(2FA) Two-Factor Authentication
Looking for top-notch security for your users and data?
Discover a wide range of robust security settings designed to safeguard the personal information of your valued visitors, customers, and your esteemed colleagues from any unauthorized access. CINNOX offers the option to set up two-factor authentication (2FA) for enhanced security, requiring users to verify their identity with a generated code. Experience the power of comprehensive security features and fortify your organization's defenses with CINNOX today.
Start for FREE Get a Demo
CINNOX lets you set up two-factor authentication (2FA), which will require you to verify your identity further using a code generated by an authentication app after you type in your username and password when logging in to your CINNOX service. This added security layer helps keep your CINNOX account credentials safe, even if your password gets compromised.
This guide provides steps to configure and manage the following:
Service-Level 2FA
You can set up 2FA at the service level, requiring all Staff members to set it up in their accounts. If a Staff member fails to configure 2FA on their account before the service-level authentication has been enforced, they will be automatically logged out of the service so they can set up 2FA.
The staff member with administration access can enable or disable service-level 2FA.
Enabling Service-Level 2FA
To enable service-level 2FA:
- Go to Administration > Security > Service Authentication from the navigation menu, then click on Edit beside Two-Factor Authentication.
- Toggle the button ON, then click on Save.
- On the pop-up window, type in your password, then click on Confirm.
- On the Service Level 2FA setup wizard that will appear, click on Next.
- Type in your custom message in the text box provided. This message will be included in the system-generated message sent to Staff members. The custom message should be no longer than 200 characters.
- Click on Activate Two-Factor Authentication.
Once the service-level 2FA is activated, Staff members will receive the system-generated message in their email and their Dashboard or App through a CINNOXBot message.
Disabling Service-Level 2FA
To disable service-level 2FA:
- Go to Administration > Security > Service Authentication from the navigation menu, then click on Edit beside Two-Factor Authentication.
- Toggle the button OFF, then click on Save.
Staff-Level 2FA
Enabling 2FA upon Sign In
When the Two-Factor Authentication is enabled on your CINNOX Service, you will be asked to activate the Two-Factor Authentication in your CINNOX Staff account when you sign in.
Before enabling 2FA in your CINNOX account, make sure you install any of the following third-party authentication apps on your mobile device first:
- Google Authenticator
- Microsoft Authenticator
- Click on Get Started, and a pop-up window will be displayed to set up the Two-Factor Authentication.
- Click on Next.
- You should have downloaded the Google Authenticator or Microsoft Authenticator as your authentication app.
- Scan the QR code on your screen using the authentication app installed on your mobile device, then click on Next.
- Alternatively, if you are having issues scanning the QR code, click on Are you having trouble scanning the QR code? and follow the manual instructions on generating the verification code.
Manual entry on your authentication app, enter your email address and the keys on the screen. The keys are not case-sensitive.
- Type in the six-digit verification code generated by your authentication app, then click on Verify and Activate.
- Click on Verify and Activate
Once completed, the backup codes will display. Save a copy of your backup codes, e.g., by clicking on Print, then click on OK.
The next time you sign in, you will be required to enter a six-digit code from your authentication app.
Enabling 2FA from My Account
Whether or not a Staff administrator activates the service-level 2FA, you can still use this security feature.
To enable 2FA:
-
Go to My Account > Authentication from the navigation menu, then click Edit to expand the page with more details.
-
Click Activate
- On the pop window that will appear, click on Next.
- Scan the QR code on your screen using the authentication app installed on your mobile device, then click on Next.
- If you are having issues scanning the QR code, click on Are you having trouble scanning the QR code? and follow the instructions on generating the verification code manually.
- Type in the six-digit verification code generated by your authentication app, then click on Verify and Activate.
Once completed, the backup codes will display. Save a copy of your backup codes, e.g., by clicking on Print, then click on OK.
The next time you sign in, you will be required to enter a six-digit code from your authentication app.
Cannot find the code?
If you have trouble finding or accessing the six-digit code in your authentication app, you may use one of your 2FA backup codes to log in.
2FA Backup Codes
When you enable 2FA, CINNOX automatically generates ten backup codes that you can use to verify your account when your mobile device and authentication app is not available. We recommend that you save a copy of these codes and keep them in a safe place.
You can only use a backup code once.
To view your backup codes:
- From the navigation menu, go to My Account > Authentication.
- Under Staff Two-Factor Authentication, click on 2FA Backup Codes.
Disabling 2FA
To disable 2FA:
-
Go to My Account > Authentication from the navigation menu, then click Edit to expand the page with more details.
-
Click Deactivate
You cannot disable 2FA if it has set it up as a required service-level authentication.
Updated 10 months ago