Setting Up Authenticator Apps

(Versions 7+)

Provides Two Factor Authentication (2FA) using One Time Password (OTP) codes generated by the Google Authenticator App.

Supported Authenticator Apps: 

 

  • Warning: Be careful when setting Two Factor Required, as it could prevent users from logging in unless:
    • Their accounts can be self-enrolled, or,
    • they have been individually configured to use at least one 2FA provider (eg. Authenticator Apps).

  • If users have already been locked out, please Contact us!

Step 1: Configure the Provider

Step 2: Configure Two-Factor Settings

  1. Status Required: Requires all users to authenticate with 2FA
    • Note: 2FA Required will prevent users subject to this Policy from logging in unless their accounts
    • have been individually configured to use at least one TFA provider (eg. Google Authenticator).
    • If users have already been locked out, please Contact us!
  2. Browser Remember Flag: Allows users skip 2FA for secure browsers
  3. Refer to Two Factor Authentication for additional details of the options (below)

Step 3: Set the Policy

Step 4: (Optional) Configure a User's Secret

Step 5: Double-Check Server Time Synchronization

Step 6: Use the App

Choosing Your Two Factor Authenticator

Users with more than one 2FA Provider configured (whether directly or via their roles) will be prompted to choose one during login