Two factor authentication (2FA) is a security process that cross-verifies users with two different forms of identification, most commonly knowledge of an email address and proof of ownership of a mobile phone.
As an Administrator, you can force users (only admin or all the profiles) to use 2FA:
When it's activated, if the user doesn't have one-time password (OTP) configured, an OTP creation page appears on user connection:
From here, follow the instructions on the screen:
- Scan the QR code with the soft token authenticator
- A PIN code will be displayed on your mobile phone
- Enter this code
- 2FA is activated (a green notification will pop-up during a few seconds to confirm)
Now when connecting to Braincube, you will need to enter a temporary code that will be given on your secondary device, right after entering your password.
Users can manage their OTP in Account application, see How to activate the two-factor authentication? article in the FAQ.