In addition to the standard password and Social login options, StackPath provides the option of enabling Two-Factor Authentication. (referred as 2FA). This article will show step-by-step, how to set up and disable 2FA on your StackPath user account.
StackPath 2FA utilizes the Time-Based One-Time Password (TOTP for short) app of your choice to provide a unique, 6-digit code that will need to be entered after your Username and Password. This adds the additional layer of 'something you have' to the login process to help further secure your account information.
To utilize Two-factor Authentication you will first need the following:
- A modern mobile device capable of running apps
- An existing StackPath user account
- The TOTP app of your choice installed on your mobile device
Enabling Two-Factor Authentication
1. To enable 2FA, log in to your profile and navigate to your Profile settings, and select the Authentication Tab. You will be presented with the option to enable 2FA as shown here.
2. You will be prompted to enter your password, please do so by selecting Setup Two-Factor Authentication
3. You will be presented with a QR Code and instructions to complete your set up through your TOTP app. If your camera is having issues or you have issues scanning the QR code, you are provided a manual code to use as well. (Seen obscured, and outlined in black below).
4. After you scan the QR code into your app or enter the code manually, you will be given a unique, 6-digit code that changes after a given time period. In this example we are using Google Authenticator, which has a timer value of 30 seconds.
Your app may also show stackpathprod above the code as shown below (Fig. A.) Enter this code into the portal below the QR code, and select Enable Two-Factor Authentication. (Fig. B.)
Fig A (Above), An Example of the code inside Google Authenticator.
Fig. B (Below), StackPath UI showing the field in which one enters the code from Google Authenticator.
5. Once enabled, you will be provided with a Backup Code.(Fig. C) This code is for you to use should you need to restore your 2FA in the event of losing access to Google Authenticator. We highly recommend you store this code somewhere safe, like in a note in your favorite password manager software. After you select Done, you have one (1) more chance to copy this code on the next screen. (Fig. D)
Fig C. (above), StackPath UI showing backup code after entering the Google Authenticator Code for the first time.
Fig D. (below), StackPath UI showing the backup code on the following screen.(obscured and outlined in black)
If you lose or forget your backup code and can not access your account, please reach out to our Support team via chat to assist in restoring your access to the portal.
6. Test your 2FA by logging out of the portal, and then re-entering your credentials as you normally would. You will be redirected to the Verification Code entry form, shown below.
From here, pen up your TOTP app and enter the 6-digit code to complete logging into your StackPath account.
You have now successfully set up Two-Factor Authentication for your StackPath account. If you are having issues logging in after setting this up. Please feel free to reach out to support via Chat.
Though we recommend leaving 2FA enabled, there might be occasions where you want to disable it. Please continue reading for instructions on how to disable 2FA.
Disabling 2-Factor Authentication
1. Navigate to your Authentication Settings, and you should see that you currently have 2FA enabled. Once there, select the button labeled Disable.
2. Enter your password when prompted as shown below and select Disable Two-Factor Authentication. (Fig. E) You will then be taken back to your Authentication Settings where the portal will confirm that the feature has been disabled. (Fig. F)
Fig. E (above) StackPath UI showing the password entry for disabling 2FA.
Fig F. (below) StackPath UI confirming 2FA is no longer active.
If you have any questions or concerns with setting up or otherwise using 2-Factor Authentication for the StackPath control portal, please do not hesitate to reach out to our Support team via chat.