Overview: Two-Factor Authentication (2FA)
IN THIS DOCUMENT
What is two-factor authentication?
Two-factor authentication (2FA) is a security process that requires users to provide two different authentication factors to verify themselves. It provides an extra level of security when logging into websites or apps then only one authentication factor provides (typically the single authentication factor used is a password).
Two-factor authentication requires the user to provide a password along with a second factor of authentication that only you have access to.
Databox supports 2 alternative authentication factors:
- One-time code sent as a text message (SMS)
- One-time code generated with an Authenticator app
Both methods are equally secure. The SMS method has the authentication tied to the phone number, not the device. The Authenticator method is linked to the app and device.
Pro Tip: Two-factor authentication is an extra layer of security available for the username/password sign-on method in Databox. There are also other sign-on authentication methods supported by Databox, like Google Sign-on and SAML SSO, which don’t require a 2FA code to be entered.
Two-factor authentication can be enabled directly within those providers.
It's recommended that all users who log in with a username and password set up two-factor authentication.
-
Note: Two-factor authentication is available for all users.
How to set up two-factor authentication
HOW TO SET UP
How to set up a one-time code sent as a text message (SMS)
In Databox, navigate to Account > My Profile > Password and Security. Click the green Enable Two-Factor Authentication button to start the setup process. Select Text Message (SMS) as the security method.
After selecting this option, you're is prompted to enter your country code (i.e., +1, +386, etc.) and phone number. We'll send a code to the phone number that's submitted to verify the authentication method.
In the login window, you're prompted to enter your 2FA code. If the code is correct, 2FA will be enabled along with the associated phone number. On every future login, you'll be sent an SMS and prompted to enter the code before gaining access to your Databox Account.
How to set up a one-time code generated with an Authenticator app
If you don't already have one, download an authenticator app like Google Authenticator or Duo on your mobile device.
In Databox, navigate to Account > My Profile > Password and Security. Click the green Enable 2-Factor Authentication button to start the setup process. Select Authentication app as the security method.
After selecting this option, you're prompted to set up your one-time password generator (like Google Authenticator) by scanning the QR code or entering the 16-character code provided. You'll see a one-time code on your device created by the Google Authenticator to verify the authentication method.
In the login window, you're prompted to enter the code in Databox. If the code is correct, 2FA will be enabled along with the associated authenticator. On every future login, you'll need to open the authenticator to access the unique one-time code before gaining access to your Databox Account.
How to use two-factor authentication
IN THIS DOCUMENT
How to use a one-time code sent as a text message (SMS)
If you have 2FA enabled with "one-time code sent as a text message (SMS)" setup, at each login after you enter the correct username and password you'll be sent an SMS and prompted to enter the code before gaining access to your Databox Account.
How to use a one-time code generated with an Authenticator app
If you have 2FA enabled with "one-time code generated with an Authenticator app" setup, at each login after you enter the correct username and password you'll be prompted to enter the one-time code generated by the authenticator. To access this code, you must open the authenticator app.
How to recover account access if you have two-factor authentication setup
Learn how to recover account access if you have two-factor authentication set up here.
How to remove two-factor authentication
To remove two-factor authentication, navigate to Account > My profile > Password and Security. Click Disable two-factor authentication at the bottom of the screen. Click Confirm in the confirmation window to disable two-factor authentication.