How it works
Quite simply, 2FA allows us to verify that the person trying to gain access to the account is who they say they are. Even if your password falls into the hands of someone other than yourself, the chances of them also having your second-factor information are extremely unlikely.
- to prevent brute force attacks on user passwords (e.g. writing a bot to attempt login over and over with random passwords) we now require users to complete a 'Are you a robot?' check each time they attempt to login after a failed login
- users can now configure 2FA by clicking the '2FA' button on the user settings page, admins can view and manage the 2FA state on the 'Users' list
All you need is a free, compatible app on your smartphone, for example:
Enabling 2FA on your account
Follow the same process to set up 2FA whether you’re accessing Digital Pigeon through the desktop app or through your internet browser.
1. While logged into your Digital Pigeon account, open the menu on the left and click "Manage".
2. You should be brought to the "Account" tab, from the menu options shown above select "Profile" from the options available.
3. Look for the "Password" section on the "Profile" page, there should be a button that shows a QR code and "2FA" click this. If you haven't logged in recently you may be prompted to enter your password.
4. A window will appear titled "Two-Factor Authentication" from which you can choose between 2FA via email or via an application like the Google Authenticator.
5A. If you choose the email option a code will be emailed to you that you will need to enter to enable 2FA.
5B. If you choose the application option you will need to scan the QR code that is generated with your phone inside your chosen 2FA application before entering the generated verification code to enable 2FA.
We highly recommend all users to enable 2FA on their accounts. It’s widely regarded as best practice and is an easy way to improve the security of your precious and valuable data.
Please note that there is currently no way for a single user account to recover their account if they lose their 2FA device.
On a multi user accounts, Account Admins can process the account recovery. To do that, Account Admins will need to contact the Digital Pigeon support team.
If you have any questions or require any assistance, please don’t hesitate to get in touch.
Comments
0 comments
Please sign in to leave a comment.