What is Two-Factor Authentication?
Two-Factor Authentication (2FA) is an improved security measure that strengthens account security by requiring a second method to confirm your identity. Multi-factor Authentication wants to use different kinds of authentication to maximize its effectiveness.
CapIntel uses your username and password (something you know) combined with an authentication application (something you have) to approve requests to log into our system.
How does it work?
When you log into CapIntel with your username and password you will be prompted for a confirmation code from your chosen application. Once you successfully enter that code you will be logged into the system.
What happens when I enter in the Incorrect confirmation code?
If you type in the confirmation code incorrectly 5 times in a row you will be locked out of the system for 30 minutes. Once the 30 minutes has expired you will be able to login again.
How do I set up Two-Factor Authentication?
Step 1: Have a Two-Factor App
You will need to have an authentication app on your phone or computer. This device is needed to generate an authentication code when you log in. There are many options depending on your device:
iPhone:
Google, Duo, 1Password, Microsoft, Twilio, Authy
Android:
Duo, Google, 1Password, Microsoft
Computer:
Authy offers an authentication application that can run on your computer if you do not have a smart phone capable of running an authentication app. On iMac you can also download Google Authenticator app.
Step 2: Enable Two-Factor in CapIntel
- Sign into your CapIntel account
- Go to Settings > Security > Two-Factor Authentication
- Click on the 'Enable two-factor authentication' button
- Open your chosen Authentication Application
- Scan the QR Code or Enter the code on screen into the App and Click Next
- Enter the confirmation code from your Authentication app into CapIntel and Click Next
- Passwords are time sensitive; there is a chance you will enter the confirmation code and it will not work; please try to enter another code.
Saving your Backup Code
Once the system has accepted the confirmation code, you’ll be presented with a 1-time use backup code. This code should be kept in a safe spot; you can use this code to access CapIntel in situations where you cannot use your authentication app.
Generating One-Time Use Code
If you need a new one-time use code you can generate it by following these steps.
- Go to Settings > Security > Two-Factor Authentication
- Enter your password
- Click on the ‘View Backup Code’ button.
- Click on the ‘Generate a new code’ button.
Can we set up Mandatory Two-Factor Authentication?
Enterprise clients can opt to enforce mandatory Two-Factor Authentication. When this option is turned on any users logging in who do not have Two-Factor Authentication enabled will be prompted to set up Two-Factor Authentication on their account.
Can I remove Two-Factor Authentication?
- Sign into your CapIntel account
- Go to Settings > Security > Two-Factor Authentication
- Enter your password
- Click on ‘Disable’
- Two-Factor Authentication will no longer be enabled.
Note: If you are part of an enterprise that has Mandatory 2-Factor Authentication you will not be able to disable Two-Factor Authentication.