Use two-factor authentication (2FA)
Two-factor authentication (2FA) is a method of adding another level of security for logging in to the intranet. 2FA adds a second step when logging in. You need to download an authenticator app to your mobile device, and connect it to your intranet login. After you set up 2FA, every time you log in, you will be asked to enter your username and password as usual, and then enter a time-sensitive six-digit code provided by the authenticator app.
Your intranet administrator may require 2FA for logging on, or make it optional so you can choose whether or not to use it. To learn about enabling 2FA for the intranet, see Two-factor authentication (2FA) for admins.
Set up required 2FA
If your administrator has made two-factor authentication a requirement for logging in to the intranet, you will need to follow these instructions the next time you login. When you successfully set up 2FA, you will receive an email confirming that two-factor authentication has been set up.
- On your mobile device, download a 2FA Authenticator app from the App store or Play store (such as Google Authenticator, Microsoft Authenticator, Authy, or Duo).
- On your computer, go to your intranet site and login as usual (or, if this is your first time logging in to the intranet, click the link in your invitation email and set your intranet password).
- You will be presented with a screen to activate two-factor authentication. Follow the instructions on screen.
- Open the authentication app on your mobile device and scan the QR code on the screen. (If you are unable to scan the QR code, click Unable to scan the code? and enter the alpha-numeric key on the screen into your authentication app.)
- Enter the 6-digit verification code generated by the authentication app.
- Click Activate.
- If successful, you will see the message "Success! Your two-factor authentication has been activated for your account." Click Continue to go to the intranet.
- All future intranet logins will require you to enter a code supplied by your authenticator app.
Set up 2FA with a single mobile device
Some front-line workers may only ever use the intranet on their mobile device. It is possible to activate and use 2FA with a single device.
- On your mobile device, download a 2FA Authenticator app from the App store or Play store (such as Google Authenticator, Microsoft Authenticator, Authy, or Duo).
- On your mobile device, go to your intranet site and login as usual (or, if this is your first time logging in to the intranet, click the link in your invitation email and set your intranet password).
- You will be presented with a screen to activate two-factor authentication. With a single mobile device, you can't use the QR code to activate 2FA. Instead, you will use an alpha-numeric key.
- Click Unable to scan the code?, copy the alpha-numeric key on the screen, and paste it into your authentication app.
- Enter the 6-digit verification code generated by the authentication app.
- Click Activate.
- Click Unable to scan the code?, copy the alpha-numeric key on the screen, and paste it into your authentication app.
- If successful, you will see the message "Success! Your two-factor authentication has been activated for your account." Click Continue to go to the intranet.
- All future intranet logins will require you to enter a code supplied by your authenticator app.
Set up optional 2FA
Follow these instructions if your intranet administrator has made two-factor authentication optional for your intranet and you want to enable it for yourself. When you successfully set up 2FA, you will receive an email confirming that two-factor authentication has been set up.
- On your mobile device, download a 2FA Authenticator app from the App store or Play store (such as Google Authenticator, Microsoft Authenticator, Authy, or Duo).
- On the intranet, click on your profile photo or name in the top right.
- In the menu that appears, click Security.
- On the Security page, click the Two-factor authentication tab.
- Open your authentication app and scan the QR code on the screen. (If you are unable to scan the QR code, click Unable to scan the code? and enter the alpha-numeric key on the screen into your authentication app.)
- Enter the 6-digit verification code generated by the authentication app.
- Click Activate two-factor authentication.
- If successful, you will see the message "Success! Your two-factor authentication has been activated for your account. All future logins will now require you to enter a code supplied by your authenticator app."
- Now you can continue navigating the intranet as usual.
Log in to the intranet with 2FA
With two-factor authentication, you will need to enter your username and password, and then a time-sensitive one-time 6-digit code from your authenticator app. The code your app provides changes every 30 seconds and will be different every time you sign in. If you are unable to enter the 6-digit code, contact your intranet administrator who can reset 2FA for you.
- Log in to the intranet with username and password as usual.
- You will be prompted to enter a 6-digit code. Open the authenticator app on your mobile device, and enter the 6-digit code provided for that account.
- Click Verify and Sign-in.
Deactivate optional 2FA
When 2FA is deactivated, you will receive an email informing you that your two-factor authentication has been disabled. This is for security, to confirm that you deactivated the 2FA. If you disable 2FA for your intranet account, it is good practice to also delete that account in the authentication app on your mobile device.
- On the intranet, click on your profile photo or name in the top right.
- In the menu that appears, click Security.
- On the Security page, click the Two-factor authentication tab.
- Click Deactivate two-factor authentication.
- You will see the message "Two-factor authentication has been deactivated on your account."
Comments
0 comments
Please sign in to leave a comment.