Two-Factor Authentication
Two-factor authentication (2FA) is an additional layer of security used to protect your WebTitan account from unauthorized access. If 2FA is enabled, a user provides their username and password on login and then must also provide an additional piece of information known only to them. This additional piece of information is a one-time password, regenerated every thirty seconds.
Go to Settings > Change Password to manage 2FA settings, or if you are a WebTitan Cloud customer administrator go to Management > Change Password.
Warning
If you are a WebTitan Gateway or Service Provider admin using 2FA, it is recommended you use NTP (Network Time Protocol) synchronization to ensure your system clock is in sync. It is not possible to login using your 2FA device if your system clock drifts out of sync. However, your backup codes will still work.
Go to System Setup > Time > NTP to enable NTP.
Follow the steps below to set up two-factor authentication:
Before continuing, you must download and install an authenticator phone app, e.g. Google Authenticator or FreeOTP.
Scan the QR code using the authenticator app installed in step 1.
If you are unable to scan the QR code, manually enter the OTP (One Time Password) secret provided in the OTP Secret: field.
In the Code: field, enter the code generated from the authenticator phone app.
Click Register.
Recovery Codes
A set of recovery codes are generated when 2FA is enabled. Store these codes carefully as they are the only way to access your WebTitan account if the device you registered 2FA on is lost.
The recovery codes are one-time use and they must be used in sequential order.