2FA stands for two-factor authentication, which means you need to authenticate your login in two separate ways.
The idea is that if one of your methods of authentication is compromised (such as someone knowing your username and password) the second method should still prevent unauthorized access to your account.
Two-factor authentication is now common on platforms that are security conscious. You will often find it on banking platforms or on social media sites where a lot of personal detail is stored.
Why should I use 2FA?
2FA is for those who want extra security, plain and simple. It is for those users who fear their username and password may be discovered somehow.
Because some DingConnect users are based in a shop or retail environment where customers may be able to see their screens, there is the potential for the wrong person to see them type their password.
There are also other risks common to the internet, such as a viruses or trojans accidentally downloaded from an email or untrusted site. There are many ways to protect against such things, but with 2FA turned on, you have the extra security of physically holding your phone.
How do I activate 2FA for my account?
2FA can be enabled by an account admin. It must be enabled for each user, allowing you to turn it on for the teller in the shop, but keep it off for the Finance user who is working from a private office etc. We’ve left the decision on who needs 2FA enabled down to the admin user.
On the user’s profile, tick the 2FA box (as seen below.) That’s all you have to do on the admin side, the rest of the process is up to the user.
The next time the user correctly inputs their username and password, they’ll be informed that extra security has been turned on and they will be asked for their phone number.
If the number is valid, the user will be sent an SMS with a code.
If the user entered the wrong number and didn’t receive an SMS, they can change the number. If they did receive the SMS, once they enter the code, their phone number is confirmed and will be tied to their DingConnect account while 2FA is enabled.
Once the code is entered, the user has logged in and can use DingConnect.
When they logout, their next login will trigger a new SMS code.
And that’s it, the user’s account is now secured with 2FA.