Escan/english/escan22/eScan Management Console/ 2FA: Difference between revisions
imported>TechContent No edit summary |
imported>TechContent No edit summary |
||
| Line 15: | Line 15: | ||
<td style="width: 422.2pt; border: solid windowtext 1.0pt; border-left: none; padding: 0in 5.4pt 0in 5.4pt;" valign="top" width="563"> | <td style="width: 422.2pt; border: solid windowtext 1.0pt; border-left: none; padding: 0in 5.4pt 0in 5.4pt;" valign="top" width="563"> | ||
<p style="font-size: 11.0pt; font-family: 'Open Sans';">We recommend that you save/store the <b>Account Key</b> in offline storage or a paperback copy, in case you lose the account access.</p></td></tr></table><br> | <p style="font-size: 11.0pt; font-family: 'Open Sans';">We recommend that you save/store the <b>Account Key</b> in offline storage or a paperback copy, in case you lose the account access.</p></td></tr></table><br> | ||
<h3 style='color:#007FFF;font-size:20.0pt;font-family:"Open Sans"'>Enabling 2FA login</h3> | |||
<p style='font-size:11.0pt;font-family:"Open Sans"'>To enable 2FA login,</p> | |||
<ol> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>Go to <b>Settings</b> > <b>Two-Factor Authentication</b>.</li> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>Open the Authenticator app.<br>After basic configuration following screen appears on smart device.</li> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>Select a preferred option. If you tapped <b>Scan a barcode</b>, scan the onscreen QR code via your smart device. If you tapped <b>Enter a provided key</b>, enter the Account Key and then tap <b>ADD</b>.<br> | |||
After scanning the Account QR code or entering Account Key the eScan server account gets added to the Authenticator app. The app then starts displaying a Time-based One-Time Password (TOTP) that is valid for 30 seconds.</li> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>Click on <b>Enable Two-Factor Authentication</b>.<br>Verify TOTP window appears.</li> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>Enter the TOTP displayed on smart device and then click on <b>Verify TOTP</b>.<br>The 2FA login feature gets enabled.</li> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>To apply the login feature for specific users, click on <b>Manage Other User Settings</b> tab. <br>The tab displays list of added users and whether 2FA status is enabled or disabled.</li> | |||
<li style='font-size:11.0pt;font-family:"Open Sans"'>To enable 2FA login for an added user, click the button to check icon.<br>The 2FA login for added users gets enabled. After enabling the 2FA login for users, whenever they log in to eScan web console Verify TOTP window appears.</li></ol> | |||
Revision as of 09:15, 1 December 2021
Two-Factor Authentication (2FA)
The system login password is Single-Factor Authentication which is considered unsecure as it may put your organization's data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your eScan web console login.
The 2FA feature mandates you to enter a Time-based One-Time Password (TOTP) after entering eScan credentials. So, even if somebody knows your eScan credentials, the 2FA feature secures data against unauthorized logins. Only administrator can enable/disable the 2FA feature. It can also be enabled for added users as well.
To use 2FA login feature, you need to install the Authenticator app for Android devices from Play Store or for iOS devices from App Store on your smart device. The Authenticator app needs camera access for scanning a QR code, so ensure you get an appropriate approval to use device camera in your organization. If a COD or BYOD policy restricts you from using device camera in your organization, enter the Account Key in the Authenticator app.
|
NOTE |
Ensure that the smart device's date and time matches with the system's date and time or else TOTPs generated by app won't get validated. |
|
IMPORTANT |
We recommend that you save/store the Account Key in offline storage or a paperback copy, in case you lose the account access. |
Enabling 2FA login
To enable 2FA login,
- Go to Settings > Two-Factor Authentication.
- Open the Authenticator app.
After basic configuration following screen appears on smart device. - Select a preferred option. If you tapped Scan a barcode, scan the onscreen QR code via your smart device. If you tapped Enter a provided key, enter the Account Key and then tap ADD.
After scanning the Account QR code or entering Account Key the eScan server account gets added to the Authenticator app. The app then starts displaying a Time-based One-Time Password (TOTP) that is valid for 30 seconds. - Click on Enable Two-Factor Authentication.
Verify TOTP window appears. - Enter the TOTP displayed on smart device and then click on Verify TOTP.
The 2FA login feature gets enabled. - To apply the login feature for specific users, click on Manage Other User Settings tab.
The tab displays list of added users and whether 2FA status is enabled or disabled. - To enable 2FA login for an added user, click the button to check icon.
The 2FA login for added users gets enabled. After enabling the 2FA login for users, whenever they log in to eScan web console Verify TOTP window appears.