TwoFactorAdminLogin: Difference between revisions
From LimeSurvey Manual
mNo edit summary |
mNo edit summary |
||
| Line 27: | Line 27: | ||
<center>Screenshot</center> | <center>Screenshot</center> | ||
*'''Issuer:''' | |||
*'''Digits:''' | *'''Issuer:''' The text typed in this box will be displayed in the app as issuer name. | ||
*'''TimePeriod:''' | *'''Digits:''' The number of digits the resulting codes will be. Please leave it at 6 for Google Authenticator. | ||
*'''Discrepancy:''' | *'''TimePeriod:''' The number of seconds a code will be valid. If you use Google Authenticator, please leave it to 30. | ||
*'''Algorithm:''' | *'''Discrepancy:''' The amount of discrepancy is allowed for the client after the TimePeriod expires (seconds) | ||
*'''Force 2FA:''' | |||
*'''Algorithm:''' The algorithm used to generate a hash: | |||
**''SHA1 (Default)'' | |||
**''SHA256'' | |||
**''MD5'' | |||
*'''Force 2FA:''' If you enable it, all instance users have to create a 2FA token after they log in again into the LimeSurvey instance. | |||
Don't forget to click on "Save" after updating your 2FA configuration. | Don't forget to click on "Save" after updating your 2FA configuration. | ||
=2FA - Personal Settings | =2FA - Personal Settings= | ||
<center>Screenshot</center> | |||
* '''Unset 2FA:''' Confirm your action to delete the 2FA-token associated to your account. | |||
{{Note|Please note that you will need to re-authenticate again if "Force 2FA" is enabled from the plugin settings.}} | |||
* '''Reset 2FA:''' If this option is selected, you will be asked to scan the new QR-code and introduce the new confirmationKey. | |||
Revision as of 11:59, 9 April 2019
Under Construction
Introduction
2FA is a way to add additional security to your account. It is called "two-factor-authentication" because two verification methods are used to access your account. The first "factor" is your usual password that is standard for any account. The second "factor" is a verification code retrieved from a 2FA application either from your computer or mobile device. For more details about 2FA and its importance, please visit the following article.
Activate 2FA
To activate your 2FA plugin, access your LimeSurvey instance, and activate it from your Plugin Manager:
To check the default settings, please click on "Configure".
Plugin settings
After you selected "Configure", the following page will be displayed:
- Issuer: The text typed in this box will be displayed in the app as issuer name.
- Digits: The number of digits the resulting codes will be. Please leave it at 6 for Google Authenticator.
- TimePeriod: The number of seconds a code will be valid. If you use Google Authenticator, please leave it to 30.
- Discrepancy: The amount of discrepancy is allowed for the client after the TimePeriod expires (seconds)
- Algorithm: The algorithm used to generate a hash:
- SHA1 (Default)
- SHA256
- MD5
- Force 2FA: If you enable it, all instance users have to create a 2FA token after they log in again into the LimeSurvey instance.
Don't forget to click on "Save" after updating your 2FA configuration.
2FA - Personal Settings
- Unset 2FA: Confirm your action to delete the 2FA-token associated to your account.
Please note that you will need to re-authenticate again if "Force 2FA" is enabled from the plugin settings.- Reset 2FA: If this option is selected, you will be asked to scan the new QR-code and introduce the new confirmationKey.
If you are superadmin explanation
2FA user management
Intro
Condition
- Action:
- Username:
- Full name:
- Email:
- 2FA-Method:
- 2FA enabled: