Difference between revisions of "2-factor Authentication"

From PrgmrWiki
m (Setup)
m
 
(8 intermediate revisions by 2 users not shown)
Line 1: Line 1:
== Setup ==
+
==Introduction==
Here's how to set up 2-factor authentication for your billing account using a mobile device as your TOTP token. YubiKeys should also be compatible.
+
2-factor authentication (2-FA) helps secure your account by using an authentication token in addition to your password. The authentication token in this case is a time-based one-time password (TOTP), which is a password that can only be used once and that expires if it is not used within a specified length of time. The TOTP is generated by the system and sent to the user by way of a text message to a mobile phone. YubiKeys should also be compatible. The user then enters the TOTP at login to confirm his or her identity.
  
* Log in to your account.
+
This procedure describes how to set up 2-factor authentication for your billing account.
* Start by choosing a 2 factor auth reset method under "Additional Settings." 
 
  
[[File:2factor-reset.png|border]]
+
==Setting up 2-Factor Authentication==
 +
# Log in to your account.
 +
# Click your name to open the drop-down menu and select "Manage Account".<p>[[File:UserAcctManageMenu.png|border]]</p>
 +
# In the Account Management Screen, click "Additional Settings" <p>[[File:CustomerAcctMng.png|border]]</p>
 +
# In the Additional Settings tab, click the drop-down menu under "2-factor Auth Reset Preference" and make your selection. <p>[[File:AddlSettings2FA.png]]</p><p>International customers can only use a secondary email address for resets. US customers can also select phone or us mail.</p><p><blockquote style="border: solid thin grey;">'''Note:''' "2-Factor Auth Email" is a separate contact type available to set an email address specifically for confirming two-factor authentication resets. This is an additional layer of security in case your main email address is compromised.</blockquote></p><p>[[File:2factor-email.png|border]]</p>
 +
# Enter a 2-FA reset passphrase if you want one. This is a way of confirming your identity if you ever need to reset your 2-factor authorization. If you set a passphrase, you will need to give this to us when we contact you for the reset. <p><blockquote style="border: solid thin grey;">'''Note:''' We recommend a reset passphrase as an additional layer of protection against social engineering.</blockquote></p>
 +
# Go to the "Authentication" tab. <p>[[File:2factor-step2.jpg|border]]</p>
 +
# In the Authentication tab, check "Enable Two-Factor Authentication" then follow the revealed instructions. <p>[[File:2factor-step3.jpg|border]]</p>
  
If you set a passphrase, you will need to give this to us when we contact you.<br>
+
== Resetting your 2-FA ==
<p>International customers can only use a secondary email address for resets. US customers can also select phone or us mail.<br>
 
A separate contact type is available for specifying an email to use specifically for confirming two-factor auth resets.</p>
 
[[File:2factor-email.png|border]]
 
* Go to "Manage Account" by clicking your username in the top right corner.
 
[[File:2factor-step1.jpg|border]]
 
  
* Go to the "Authentication" tab.
+
You may wish to reset your 2-FA for various reasons (a lost phone, for example). E-mail support@prgmr.com to begin the process. We'll use the confirmation method we have on file for you (along with your reset passphrase, if you have one) to confirm the reset.
[[File:2factor-step2.jpg|border]]
+
{{c|for Users}}
 
 
* Check "Enable Two-Factor Authentication" then follow the revealed instructions.
 
[[File:2factor-step3.jpg|border]]
 
 
 
== Resetting your 2FA ==
 
 
 
E-mail support to begin the process. We'll use the confirmation method we have on file for you to confirm the reset.
 

Latest revision as of 23:27, 2 July 2016

Introduction

2-factor authentication (2-FA) helps secure your account by using an authentication token in addition to your password. The authentication token in this case is a time-based one-time password (TOTP), which is a password that can only be used once and that expires if it is not used within a specified length of time. The TOTP is generated by the system and sent to the user by way of a text message to a mobile phone. YubiKeys should also be compatible. The user then enters the TOTP at login to confirm his or her identity.

This procedure describes how to set up 2-factor authentication for your billing account.

Setting up 2-Factor Authentication

  1. Log in to your account.
  2. Click your name to open the drop-down menu and select "Manage Account".

    UserAcctManageMenu.png

  3. In the Account Management Screen, click "Additional Settings"

    CustomerAcctMng.png

  4. In the Additional Settings tab, click the drop-down menu under "2-factor Auth Reset Preference" and make your selection.

    AddlSettings2FA.png

    International customers can only use a secondary email address for resets. US customers can also select phone or us mail.

    Note: "2-Factor Auth Email" is a separate contact type available to set an email address specifically for confirming two-factor authentication resets. This is an additional layer of security in case your main email address is compromised.

    2factor-email.png

  5. Enter a 2-FA reset passphrase if you want one. This is a way of confirming your identity if you ever need to reset your 2-factor authorization. If you set a passphrase, you will need to give this to us when we contact you for the reset.

    Note: We recommend a reset passphrase as an additional layer of protection against social engineering.

  6. Go to the "Authentication" tab.

    2factor-step2.jpg

  7. In the Authentication tab, check "Enable Two-Factor Authentication" then follow the revealed instructions.

    2factor-step3.jpg

Resetting your 2-FA

You may wish to reset your 2-FA for various reasons (a lost phone, for example). E-mail support@prgmr.com to begin the process. We'll use the confirmation method we have on file for you (along with your reset passphrase, if you have one) to confirm the reset.