Two-Factor Authentication
Two-factor authentication (also known as 2FA), sometimes referred to as two-step verification or dual-factor authentication, is a security process in which users provide two different authentication factors to verify themselves. WebAlliance enables you to add this extra layer of security to ensure that your (and your customers') data is safe.
NOTE: The Admins and SuperAdmins for your site should be REQUIRED to use two-factor authentication. There are a large number of site settings accessible to these types of users, so a great deal of damage can be done if a malicious person were to learn an Admin or SuperAdmin password and access the backend of the site.
Two-Factor Authentication Site Settings
To activate two-factor authentication sitewide, navigate to the site Settings from the Admin Home page, and navigate to Users > Two Factor Authentication.
The "Remember Me Expiration" setting denotes how many days will pass after a successful login that the system will "forget" a user's two-factor authentication code, and they will need to re-enter it.
Two-Factor Authentication User Settings
To enable Two-Factor Authentication for a specific user, navigate to their User Detail page, and select the Security & Access tab. Under the "User Site Options" heading, you will find a setting labeled "Require Two-Factor Authentication".
Should you wish to update this setting for multiple users (but do not wish to enable it sitewide), the Bulk User Update tool will allow you to do so.
Please note that if you wish to turn off two-factor authentication for a user who had it activated previously, you must press the "Reset 2FA" button as well as uncheck the "Require Two-Factor Authentication" box.
User Experience
Once two-factor authentication is enabled (either sitewide or for a specific user), the user will be redirected to the above screen upon login. They will be instructed to set up their two-factor authentication method. Apps such as Google Authenticator, LastPass, and Authy are recommended.