Two-Factor Authentication

CINNOX lets you set up two-factor authentication (2FA), which will require you to verify your identity further using a code generated by an authentication app after you type in your username and password when logging in to your CINNOX service. This added security layer helps keep your CINNOX account credentials safe, even if your password gets compromised.

805805

 

This guide provides steps to configure and manage the following:

 

Service-Level 2FA

You can set up 2FA at the service level, which will require all Staff members to set it up in their accounts. If a Staff member fails to configure 2FA on their account before the service-level authentication has been enforced, they will be automatically logged out of the service so they can set up 2FA.

📘

The staff member with administration access can enable or disable service-level 2FA.

 

Enabling Service-Level 2FA

To enable service-level 2FA:

  • From the navigation menu, go to Administration > Security > Service Authentication, then click on Edit beside Two-Factor Authentication.
11661166
  • Toggle the button ON then click on Save.
  • On the pop-up window that will appear, type in your password then click on Confirm.
500500
  • On the Service Level 2FA setup wizard that will appear, click on Next.
694694
  • Type in your custom message on the text box provided. This message will be included in the system-generated message that will be sent to Staff members. The custom message should be no longer than 200 characters.
713713
  • Click on Activate Two-Factor Authentication.
721721

Once the service-level 2FA is activated, Staff members will receive the system-generated message in their email, as well as in their Dashboard or App through a CINNOXBot message.

690690

 

Disabling Service-Level 2FA

To disable service-level 2FA:

  • From the navigation menu, go to Administration > Security > Service Authentication, then click on Edit beside Two-Factor Authentication.
  • Toggle the button OFF, then click on Save.

 

Staff-Level 2FA

Enabling 2FA upon Sign In

When the Two-Factor Authentication is enabled on your CINNOX Service, you will be asked to activate the Two-Factor Authentication in your CINNOX Staff account when you sign in.

19821982

📘

Before enabling 2FA in your CINNOX account, make sure you install any of the following third-party authentication apps on your mobile device first:

  • Google Authenticator
  • Microsoft Authenticator
20762076
  • Click on Get Started and a pop-up window will be displayed for the set up of the Two-Factor Authentication
  • Click on Next.
18081808
  • By this time, you should have downloaded the Google Authenticator or Microsoft Authenticator as your authentication app.
  • Scan the QR code on your screen using the authentication app installed on your mobile device, then click on Next.
19621962

 

  • Alternatively, if you are having issues scanning the QR code, click on Are you having trouble scanning the QR code? and follow the manual instructions on generating the verification code.
19501950

Manual entry on your authentication app, enter your email address and the keys indicated on the screen. The keys are not case-sensitive.

 

  • Type in the six-digit verification code generated by your authentication app, then click on Verify and Activate.
  • Click on Verify and Activate
19481948

Once completed, the backup codes will display. Save a copy of your backup codes, e.g., by clicking on Print, then click on OK.

408408

The next time you sign in, you will be required to enter a six-digit code from your authentication app.

 

Enabling 2FA from My Account

Whether or not a Staff administrator activates the service-level 2FA, you can still take advantage of this security feature on your own.

To enable 2FA:

  • Go to My Account > Authentication from the navigation menu, then click Edit to expand the page with more details.

  • Click Activate

945945
  • On the pop-window that will appear, click on Next.
704704 729729
  • Scan the QR code on your screen using the authentication app installed on your mobile device, then click on Next.
    • If you are having issues scanning the QR code, click on Are you having trouble scanning the QR code? and follow the instructions on generating the verification code manually.
718718
  • Type in the six-digit verification code generated by your authentication app then click on Verify and Activate.
408408

Once completed, the backup codes will display. Save a copy of your backup codes, e.g., by clicking on Print, then click on OK.

408408

The next time you sign in, you will be required to enter a six-digit code from your authentication app.

 

Cannot find the code?

If you are having trouble finding or accessing the six-digit code in your authentication app, you may use one of your 2FA backup codes to log in.

 

2FA Backup Codes

When you enable 2FA, CINNOX automatically generates ten backup codes that you can use to verify your account when your mobile device and authentication app is not available. We recommend that you save a copy of these codes and keep them in a safe place.

945945

📘

You can only use a backup code once.

To view your backup codes:

  • From the navigation menu, go to My Account > Authentication.
  • Under Staff Two-Factor Authentication, click on 2FA Backup Codes.
945945

 

Disabling 2FA

To disable 2FA:

  • Go to My Account > Authentication from the navigation menu, then click Edit to expand the page with more details.

  • Click Deactivate

📘

You cannot disable 2FA if it has set it up as a required service-level authentication.