2-Factor Authentication
About Two-factor Authentication
Two-factor authentication (2FA) is a security measure that requires two forms of authentication to identify a user.
In addition to the password, a second factor must be provided to log in.
There are a wide variety of 2FA services out there that will work with the IACBOX.
The IACBOX uses the Time-based One-time Password (TOTP) method based on smartphone apps hat generate a random 6-digit PIN every 30 seconds.
Enabling Two-factor Authentication
Enabling 2FA is a short and easy 3-step process that can be started on the user account settings page.
It is also part of operating the IACBOX securely.
An Authenticator App is necessary to set up the 2FA.
Recommended Authenticator Apps:
- Googe Authenticator
- Microsoft Authenticator
- 2FAS
The lock-icon shows the current status.
- A gray lock-icon indicates that 2FA has not been set up yet.
- A green lock-icon indicates that 2FA has been set up correctly.
Click on
Activate and a pop-up will appear. A QR-Code will be generated.Step 1 - Scan QR-Code
Scan the QR-code with your authenticator app or copy the secret manually.
Step 2 - Type in 6-digit PIN
After scanning the QR-Code from the WebAdmin your Authenticator App will provide a 6-Digit PIN that is needed to finalize the 2FA setup in the WebAdmin.
Type in the 6 digits into the intended field and click Activate 2FA. This needs to be done fast, as the PIN changes every couple of seconds.
Step 3 - Recovery Codes
Step 3 provides a safety measure in case access to the Authentication App is no longer possible. After a successful validation, five recovery codes are provided.
Disable 2-Factor Authentication
2FA can be enabled and disabled on a per-user basis.
In the WebAdmin -> System / WebAdmin User section, the 2FA settings can be disabled for each user individually.
