Two-Factor Authentication (2FA) is an extra layer of protection used to ensure the security of user accounts beyond just a username and password. It requires an additional login credential - a one time password - which is accessed via the users mobile.
VendorPanel 2FA required Time-based One Time Password (TOTP) Apps. These are the security apps that generate a second code (password) to enter upcon login.
If your organisation has elected to make Two-Factor Authentication (2FA) mandatory. Users who login will be greeted with a prompt to enable it for their account.
By default, users will have a one-month grace period to organise 2FA for their account before they are forced to use it.
It’s strongly recommended that users follow the steps to setup 2FA for their account before the end of the grace period to avoid any confusion later down the line.
Turn on 2FA for by navigating to your profile options and selecting Setup and manage your 2FA.
Users can drill into the dropdown panels to get an understanding of what 2FA is, and how it works.
Once ready, the user can click the ‘Setup 2FA’ option to begin the process.
Authentication Security Apps
To use 2FA you will need to have a authentication security app installed on your mobile device.
You can search for apps on your device’s App Store. VendorPanel recommends using Twilio Authy Authenticator which is available for both iPhone and Android devices.
The security app may also give you a set of recovery codes (or backup codes). We strongly recommend that you keep these on file in case you need to use them if your app fails to work for any reason.
Setup of 2FA
Start by scanning the QR Code with your mobile device. Alternatively, you can use the Key should your device have any trouble recognising the QR code.
Once you have scanned the code and added the account to your authenticator app, click on Next.
Enter the code provided for your account within the authenticator app on your device.
Click on Verify to confirm the code. If successful, you will be prompted and can continue to the system.
What's next?
Upon your next login, you will be asked to provide the verification code through your authenticator app.
Once verified, you will be directed to your account.