Two-factor authentication is an option that provides an added layer of security for user logins. When two-factor authentication is enabled login requires additional verification for login. When a user attempts to log in, they will be required to provide a code in addition to their username and password. Two-factor authentication can be configured to use either the user's email or a TOTP standard authenticator application to provide the necessary code for login.
The first time a user initiates login from a new device, a security code is emailed to the user's email address. This code then must be entered to complete the login process. Optionally, the user can select to store the security code on the local device, for automatic retrieval on subsequent login actions from the same local device. (This function is intended for personal devices, such as a user's home computer, personal laptop, cellphone, etc.)
The User utilizes a TOTP authenticator application, commonly installed on their mobile device, such as Google Authenticator or Microsoft Authenticator. The user will configure VergeIO as an account within their authentication application; this can be done easily by scanning the provided QR code from within the VergeOS user interface. Subsequently, the authenticator application will continuously generate a new code to be used for the user to input for login. Each code generated by the TOTP application is typically only valid for 30 seconds or less.
To access these settings, navigate to System -> Settings -> Advanced Settings from the Main Dashboard.
Two-factor authentication:
If the system setting is set as Two-factor authentication = Required, all users automatically have Two-factor authentication enabled and the option does not appear on the User edit form.
Need more Help? Email support@verge.io or call us at (855) 855-8300