Immunefi has previously only supported email and password based authentication to the platform. Only having password and email based authentication opens up users to security risks in the event that their email+password combination gets compromised.
To help protect your account from unauthorized access, the Immunefi platform now supports the usage of a second authentication factor using time-based one-time passwords (TOTP) from an authenticator app (such as Google/Microsoft/Authy Authenticator). Two-factor authentication (2FA) is not enabled by default. To enable 2FA for your account please follow these steps:
Step 1: Go to your Immunefi user settings and on the Two-factor authentication row click “Enable”
Step 2: Open (or download) your authenticator application and scan the QR code
On the next screen open your authenticator application (e.g. Google Authenticator) and scan the QR code displayed. Alternatively, if you cannot scan the QR code then enter the provided code manually into your authenticator application.
Once the QR code is captured, then your authenticator application will display a 6 digit code. Enter this into the window and click “Next”.
Step 3: Save your recovery codes
On the next screen take a moment to view and save your backup codes. You will need these codes if you ever lose your authenticator application.
Important: If you lose both your authenticator and back up codes then your account will be irrecoverable! Immunefi will not be able to assist with regaining access to your account.
Step 4: 2FA Enabled
Once you click “Enable 2FA” you’ve completed enabling two-factor authentication on your Immunefi account. You’ll need to use codes from your authenticator application when you login.
Disabling Two-Factor Authentication (2FA) on your Immunefi account
You may want to temporarily disable two-factor authentication on your Immunefi account. Disabling two-factor authentication may need to occur if you want to switch to a new authentication application.
Step 1: Go to your user settings and click on Disable 2FA
Step 2: Under your user settings navigate to the Two-Factor Authentication row and click on “Disable 2FA”.
You will be prompted to re-enter an authentication code. Once successful, 2FA will be disabled.
Trust this Device Feature
When you enable two-factor authentication for your account, you will be given the option to trust your device when you log on. You will also be able to add a trusted device in your account settings.
Trusting a device allows you to skip the 2FA check for 7 days.
If you would like to remove trusted devices, you can go to your user settings and select ‘Revoke all my devices’ to remove all trusted devices from your account. Doing so will end all active sessions (apart from the one you are using) and require you to pass a 2FA check before you can log in again.
If you want to know how many trusted devices are linked to your account, this information is visible in the user settings.
Comments
0 comments
Article is closed for comments.