Two-Factor Authentication
Two-factor authentication enhances login security and is available in the following modes:
- Email-Based Authentication : Absolute sends a 5-digit code to the user's registered email address each time a login attempt is made. The user must enter this code to complete the login process.
- Google Authenticator (TOTP): Using the Google Authenticator app (or any compatible TOTP app), a 6-digit time-based code is generated on the user’s device. This code must be entered each time the user logs into the console.
- Duo Security: If configured, users can authenticate via DUO, using push notifications, phone calls, or passcodes through the Duo Mobile app.
On the first login, users are prompted to choose their preferred 2FA method. Once selected, the console will default to that method for future logins. Admins can reset the user's account to allow them to choose a different 2FA method if needed.
For a Single Sign-On, please navigate to External Authentication in Setup.
|
Prerequisites An account that has 'Admin' permissions |
How to Enable Two-Factor Authentication on an Individual Account
| ❶ |
Click 'Console Security' > Select User Accounts > Select User Name > Click 'Edit' |
| ❷ |
Tick 'Enable Two Factor Authentication' |
| ❸ |
Confirm your Admin password > Click 'Save' |
| ❹ |
When the user logs in for the first time there will be a prompt to choose a 2FA method (Email or Google Authenticator). After selecting the method, click Create to finalize setup |