What is 2 factor Authentication?
2-Factor authentication (2FA) is an electronic authentication method where users are granted the access to the application only after they provide two responses (factors) to prove their identity. It is mainly used to ensure the user data is protected and secured. A third-party authenticator (TPA) app enables two-factor authentication, usually by showing a randomly generated and frequently changing code to use for authentication.
In FLOW portal user profile, the user can set up 2FA using Google Authenticator app by default (or using SMS if it is enabled by the project). The setup and use of the 2FA can be optional or mandatory according to the project to which the users are logging in.
How to set up the 2FA in FLOW?
There are two locations where you can set up your 2FA in FLOW: in "My profile" page & in the "login" page
1- In "My profile" page:
In case that the project does not enforce the setup of the 2FA, setting that up is not mandatory, then you can optionally select to protect your account by using this available functionality.
As mentioned, there are two ways supported by FLOW: by Google Authenticator app (default) and by SMS (projects' configurations).
- Using Google Authenticator app:
Before you start, please install Google Authenticator app on your mobile phone.
Google play: https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2&hl=en&gl=US
IOS App: https://apps.apple.com/us/app/google-authenticator/id388497605.
Make sure the clock on your phone is synchronized, even one minute shift is not acceptable for Google Authenticator.
Then login to the project's portal and follow the following steps:
1- Click on the user icon (first icon to the right,
2- click on "My profile",
3- click on the "Security" section,
4- activate the toggle of "Two Factor Authentication",
5- type in your recovery email (please note that this is important step, because if you need to set your password, you need then to put your recovery email that you used in this step),
6- click on "Register with Google Authenticator APP" button
7- In the Google Authenticator App (on your mobile phone), click on (+) sign to add a site--> Scan a QR code
8- Scan the code that is shown after you clicked on "Register with Google Authenticator APP" button with your phone, and then
9- enter the 6 digits code,
10- click on "Validate PIN Code" button,
11- click on the "Close and refresh the page" button
After you finalize the setup, a notification message will pop-up when you login to the portal to prompt you to enter the 2FA code. You can then find the code in your mobile phone
Note that if you are using the Google Autherticator app as 2FA for several sites or portals, it is a good practice to rename that in your Google Authenticator app. You can do it by long press the pin-code entry in your phone and rename it.
- Using SMS:
Some projects support setting up your 2FA by using the SMS. You can first apply the steps 1 & 2 as mentioned for Google Authenticator app --> then make sure that you filled in your mobile phone number in the personal data in your profile and click "Save" button. And then complete with steps 3-5
6- In the Authentication Type drop down options, select SMS
7- Click on "Send me a verification SMS"
8- Enter the code that was sent to your mobile phone, then click "Close and refresh the page"
2- In the "login" page:
In case that the project enforces the setup of the 2FA, setting that up is mandatory. Then you will not be able to access the project's FLOW portal before setting up the 2FA.
You can setup your 2FA after the first login by using the same steps mentioned above after you see this screen:
Please sign in to leave a comment.