2-Factor Authentication
It is a security measure that adds an extra layer of protection to user accounts or systems. With 2FA, users are required to provide two different forms of identification or authentication factors to verify their identity.
When 2FA is enabled, the user needs to provide both the password and the additional authentication factor to gain access to their account or system. This adds an extra level of security, as even if someone obtains the password, they would still need the second factor to log in successfully.
2FA helps protect against various security threats like password theft, phishing attacks, and unauthorized access. It has become a widely adopted security practice for online accounts, banking services, email providers, and other sensitive systems.
TOTP Based 2-Factor Authentication
TOTP stands for Time-Based One-Time Password. TOTP-based 2FA (Two-Factor Authentication) is a security mechanism that uses time-based OTPs to provide an additional layer of authentication for user accounts.
In TOTP-based 2FA, a shared secret key is generated and securely stored on both the server side and the user's device or application. This shared secret is used to generate a unique OTP at regular time intervals, typically every 30 seconds.
When a user attempts to log in, they are prompted to enter their username and password as the first factor of authentication. The second factor is the OTP generated by their TOTP-based authentication application.
Popular applications that implement TOTP-based 2FA include Google Authenticator, Microsoft Authenticator, and Authy.
We have set up 2-factor authentication (2FA) as the default security. However, you have the flexibility to choose between 2-factor authentication and Google Authenticator based on your preference.
How to Switch from 2-factor authentication (2FA) to Google authenticator?
Go to myaccount and then go to Settings -> Security
Click on Google Authenticator.
After clicking on Google Authentication, you can see the below screen.
Now scan the QR code using any authenticator app (like Google Authenticator or Microsoft Authenticator) and after scanning the code a TOTP (Time-based One-Time Password) will be shown on the device which has been used to scan the code, enter that code in the text box and click on Enable button.
After clicking on the enable option, Google authentication would be enabled and backup codes would appear. Users can use these backup codes later for login into myaccount but remember each backup code can be used only once.
Switch from Google Authenticator to 2-factor Authentication (2FA)
Click on "A code is sent by text message on your registered phone".
After clicking that you will see the popup screen and a new OTP has been sent to your requested mobile number.
Enter the verification code and click on the Confirm button.
Resend
If you did not get OTP, you can click on resend to get a new verification code.
Your two-factor authentication code verified successfully.
After clicking on the confirm button, 2-factor authentication would be enabled and backup codes would appear. Users can use these backup codes later for login into myaccount but remember each backup code can be used only once.
Backup codes
About Backup codes:
One-time usable secret codes that you can keep somewhere safe and use when you are not able to get verification codes on your phone. You can re-generate new codes anytime.
Show Backup codes
You can see the backup codes by clicking Show Backup Code button.
After clicking on that button you can see the popup.
Get New Codes
You can get new back-up codes by clicking Get New Codes button.
Download back-up Codes
You can Download backup codes just by clicking on the Download button.