This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
faq:security:2auth [2023/09/27 14:36] – [Enabling 2Auth] vikki | faq:security:2auth [2023/10/27 10:14] – vikki | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | [[: | + | [[: |
- | ====== 2Auth Second Factor Authentication | + | ====== 2Auth Second Factor Authentication ====== |
Welcome to the User Guide for **2Auth** - the Second Factor Authentication for Lookafter Virtual Office (VO) and webmail system. This guide will walk you through the process of setting up and using 2FA to enhance the security of your webmail account. | Welcome to the User Guide for **2Auth** - the Second Factor Authentication for Lookafter Virtual Office (VO) and webmail system. This guide will walk you through the process of setting up and using 2FA to enhance the security of your webmail account. | ||
Line 50: | Line 50: | ||
1. Once 2Auth is enabled, log in to your VO or webmail with your email address and password. | 1. Once 2Auth is enabled, log in to your VO or webmail with your email address and password. | ||
- | 2. An OTP will be sent to your 2Auth Email. Check for the email and obtain the code, then enter the code into the given field. | + | |{{: |
- | <color # | + | 2. You will see the following screen, prompting |
- | The Skip button will be unavailable after your 2Auth Email has been verified on a successful login with 2Auth. | + | |
- | 3. Click Login to proceed. If the OTP is entered correctly, access to your account will be granted. | + | |{{: |
+ | 3. Check the email received at your 2Auth Email to obtain the OTP. A sample of the OTP email is shown in the following image. | ||
+ | |||
+ | //Note:// If you did not see the email in your Inbox, please check the spam or junk folder as well. | ||
+ | |||
+ | |{{: | ||
+ | |||
+ | |||
+ | 4. Enter the OTP code that you received into the given field and click **Go**. | ||
+ | |||
+ | |{{: | ||
+ | |||
+ | |||
+ | If the OTP is entered correctly, access to your account will be granted. | ||
---- | ---- | ||
Line 68: | Line 80: | ||
=== 2. Can I use the same email address as the 2Auth Email of multiple user accounts? === | === 2. Can I use the same email address as the 2Auth Email of multiple user accounts? === | ||
- | Yes. A single email address can be set as the 2Auth Email for multiple user accounts. All OTP messages will be sent to this 2Auth Email.\\ | + | Yes. A single email address can be set as the 2Auth Email for multiple |
- | In order to distinguish which OTP is for which email address, you can match the unique character displayed in the login page against the one displayed in the OTP message. | + | |
Line 77: | Line 88: | ||
* **Wait a few minutes:** Occasionally, | * **Wait a few minutes:** Occasionally, | ||
* **Verify your 2Auth Email: | * **Verify your 2Auth Email: | ||
- | * **Ensure helpdesk@lookafter.com is whitelisted: | + | * **Ensure helpdesk@lookafter.com is whitelisted: |
If you've tried all the above steps and still haven' | If you've tried all the above steps and still haven' | ||
- | === 4. How long does the OTP expired? === | + | === 4. I have voadmin/ |
+ | As a voadmin or avomaster, you have the administrative rights in the setup, update, reset, and deactivation of 2Auth for your users.\\ | ||
+ | Please refer to: [[faq: | ||
+ | |||
+ | |||
+ | === 5. How long does the OTP expired? === | ||
The 2Auth OTP expires after 20 minutes from the moment it is generated. After this time period elapses, the OTP becomes invalid and cannot be used for authentication purposes. | The 2Auth OTP expires after 20 minutes from the moment it is generated. After this time period elapses, the OTP becomes invalid and cannot be used for authentication purposes. | ||
- | === 5. Can I change my 2Auth Email for OTP delivery? === | + | === 6. Can I change my 2Auth Email for OTP delivery? === |
- | Yes. To update your 2Auth Email, log in to your account and navigate to your Profile > 2Auth. | + | Yes. To update your 2Auth Email, log in to your account and navigate to Profile > 2Auth. |
- | === 6. What if I receive an OTP email but didn't request it? === | + | === 7. What if I receive an OTP email but didn't request it? === |
If you receive an unexpected OTP email, it is possible that someone is attempting unauthorized access to your account. Please take immediate action to protect your account: | If you receive an unexpected OTP email, it is possible that someone is attempting unauthorized access to your account. Please take immediate action to protect your account: | ||
* **Do not use the OTP:** First and foremost, do not use the OTP if you didn't request it. Using the OTP in this situation could potentially compromise your account' | * **Do not use the OTP:** First and foremost, do not use the OTP if you didn't request it. Using the OTP in this situation could potentially compromise your account' | ||
Line 98: | Line 114: | ||
- | === 7. Is it safe to share my OTP with anyone? === | + | === 8. Is it safe to share my OTP with anyone? === |
No, OTPs are confidential and should not be shared with anyone. They are meant for your use only and are a crucial part of your account security. | No, OTPs are confidential and should not be shared with anyone. They are meant for your use only and are a crucial part of your account security. | ||
- | === 8. Why is my "Email verify status" | + | === 9. Why is my "Email verify status" |
If your email verification status is " | If your email verification status is " | ||
- | === 9. Can I use two or more email to receive OTP? === | + | === 10. Can I use the original email address as the 2Auth Email? === |
- | At the moment, 2Auth only allows one email address to be registered per account for OTP delivery. | + | Using your original email address as the 2Auth Email is possible over IMAP or POP3 access, but it is not a recommended practice from a security perspective. If your email address is compromised, |
+ | |||
+ | |||
+ | === 11. Can I use two or more email address | ||
+ | Currently, 2Auth only allows one email address to be registered per account for OTP delivery. | ||
+ | |||
+ | |||
+ | === 12. Can I opt for SMS instead of email to receive OTP? === | ||
+ | 2Auth only provides OTP delivery through email at the moment. | ||
+ | |||
+ | |||
+ | === 13. Can I disable 2Auth for my account? === | ||
+ | If you decide to not use 2Auth, you can disable the feature by unchecking the " | ||
- | === 10. Can I opt for SMS instead of email to receive | + | === 14. What if the email address registered as my 2Auth Email no longer able to receive |
- | 2Auth only provides OTP delivery through | + | You can request your voadmin or avomaster to [[faq: |
- | === 10. I'm having problems accessing my account after enabling 2Auth. What should I do? === | + | === 15. I'm having problems accessing my account after enabling 2Auth. What should I do? === |
If you experienced any issues related to 2Auth, please send the description of issue along with screenshots to helpdesk@lookafter.com for further assistance. | If you experienced any issues related to 2Auth, please send the description of issue along with screenshots to helpdesk@lookafter.com for further assistance. | ||