If you'd like to add an additional layer of security to your product or site, Outseta support two-factor authentication (2FA) via two methods:
- Authenticator Apps (Google Authenticator, 1Password, Authy)
This article will walk you through how you can set up and configure 2FA.
Enable Two-Factor Authentication (2FA)
1. Navigate to AUTH > SIGN UP AND LOGIN and click SHOW ADVANCED OPTIONS.
2. Select ENABLE TWO-FACTOR AUTHENTICATION.
- If you only select this first checkbox, users of your site have the option of enabling 2FA from when they login from their Outseta profile.
- If you also select the REQUIRE USERS TO SET UP TWO-FACTOR AUTHENTICATION checkbox, every user will be required to enroll in 2FA. If they already have login credentials configured, they'll be prompted to enroll on their next login.
Once you've made your selections, click SAVE.
2FA enrollment flow
1. If you're not requiring 2FA for all users on your site, individual users can enable 2FA for themselves by logging into your site clicking the TWO FACTOR AUTHENTICATION link that appear under their email address on the PROFILE tab.
2. Next, you can choose whether you want to setup 2FA based on email or using an authenticator app. If you choose to use an authenticator app, Google Authenticator, Authy, and1Password are supported.
In this example I've chosen email. Click ENABLE.
3. Next, you'll be prompted for a verification code—in this case, the code is delivered via email.
Here's an example of the email that the recipient will recieve.
Enter the verification code. You'll now see a prompt mentioning that 2FA was enabled successfully.
4. IMPORTANT! Copy or download the RECOVERY CODES that now display. You'll need these if you somehow lose access to your 2FA method, so be sure to store them somewhere safe.
Once you've copied or downloaded your recovery code and have stored them safely, click DONE.
