2-factor Authentication

From PrgmrWiki
Revision as of 18:27, 2 July 2016 by Paul (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Introduction

2-factor authentication (2-FA) helps secure your account by using an authentication token in addition to your password. The authentication token in this case is a time-based one-time password (TOTP), which is a password that can only be used once and that expires if it is not used within a specified length of time. The TOTP is generated by the system and sent to the user by way of a text message to a mobile phone. YubiKeys should also be compatible. The user then enters the TOTP at login to confirm his or her identity.

This procedure describes how to set up 2-factor authentication for your billing account.

Setting up 2-Factor Authentication

  1. Log in to your account.
  2. Click your name to open the drop-down menu and select "Manage Account".

    UserAcctManageMenu.png

  3. In the Account Management Screen, click "Additional Settings"

    CustomerAcctMng.png

  4. In the Additional Settings tab, click the drop-down menu under "2-factor Auth Reset Preference" and make your selection.

    AddlSettings2FA.png

    International customers can only use a secondary email address for resets. US customers can also select phone or us mail.

    Note: "2-Factor Auth Email" is a separate contact type available to set an email address specifically for confirming two-factor authentication resets. This is an additional layer of security in case your main email address is compromised.

    2factor-email.png

  5. Enter a 2-FA reset passphrase if you want one. This is a way of confirming your identity if you ever need to reset your 2-factor authorization. If you set a passphrase, you will need to give this to us when we contact you for the reset.

    Note: We recommend a reset passphrase as an additional layer of protection against social engineering.

  6. Go to the "Authentication" tab.

    2factor-step2.jpg

  7. In the Authentication tab, check "Enable Two-Factor Authentication" then follow the revealed instructions.

    2factor-step3.jpg

Resetting your 2-FA

You may wish to reset your 2-FA for various reasons (a lost phone, for example). E-mail support@prgmr.com to begin the process. We'll use the confirmation method we have on file for you (along with your reset passphrase, if you have one) to confirm the reset.