Versions Compared

Old Version 4

changes.mady.by.user Jay-Ar Brouillard

Saved on

compared with

New Version Current

changes.mady.by.user Abhishek Jadhav

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Security allows users to add an extra layer of protection by setting up two factor authentication

Table of Contents
minLevel1
maxLevel3
exclude^Saved Queries allow users.*

...

Two-factor authentication (2FA) is a security process that requires users to provide two distinct forms of identification before gaining access to FlexDeploy. Typically, this involves a combination of something the user knows (like a password) and something the user possesses (like a code provided by an authenticator or sent to their phone) to enhance the overall security and reduce the risk of unauthorized access.

...

Info

By default, 2FA is not enabled for a new user. Each user must opt into 2FA by configuring it in the user’s profile.

Configuring Two Factor Authentication

...

1️⃣ Login into FlexDeploy normally and navigate to your profile Profile → Security

...

2️⃣ Click the Enable Two Factor Authentication button and Enter enter your password (the FlexDeploy user who is currently logged in).

...

3️⃣ Setup your external authenticator application by scanning the provided QR code with your phone or device. Alternatively, if scanning is not possible or it does not work, copy the shared key and manually configure your authenticator using the key,

...

Info

When manually , configuring the authenticator make sure of the following:

  • The generated code is 6 digits

longs,

  • long

  • The period is 30 seconds

, and

  • HmacSHA1 is used as the hashing algorithm.

These parameters should be the default for most authenticators. All other options are up to you.

...

At this point, your next login with the current user will prompt for 2FA code after successfully providing username and password. Every login will require 2FA code unless Remember Device is checked.

Remember a Device

2FA Remember Device in Two-Factor Authentication (2FA) allows users to bypass the second authentication factor on trusted devices for 30 days. With this option, users can experience a more seamless login experience on their trusted devices while still maintaining a strong level of security.

...

2️⃣ Remembered devices will always display on the users profile → security. You may revoke all or some devices if desired. Users should do this should they lose their phone or any registered device.

...

FAQ

Help I lost my authenticator device. How can I login?

...

From the 2FA prompt, click “recovery code” and then click send “new recovery code”. You should receive an emaily email shortly with your 2FA recovery code which you can enter on screen to login. Beware the recovery code will only last a short period of time.

Once you have logged in with the recovery code you should either disable 2FA in your Profile or reconfigure it with a new device.

Does 2FA work with LDAP?

...

Short answer is no. FlexDeploy does not handle in the login portion when Single Sign On is enabled and, therefore, we cannot provide 2FA. Check with your SSO provider for 2FA or MFA functionality.

...