Document toolboxDocument toolbox

Two Factor Authentication

Owned by Samir Doshi
Last updated: Jan 08, 2024 by Tushar Devani (Unlicensed)
3 min read


About

Two-factor authentication (2FA) is a security system that requires two separate, distinct forms of identification in order to access ASTPP Login. The first factor is a password and the second includes OTP sent to the registered email ID to authenticate the account. 

Some of its key features are as below.

  • Customer Will Receive An Email With One Time Usage Code/Password
  •  With 'Resend' Feature where the OTP can be resent to the same registered email ID.
  •  Expiry Time Of One Time Usage Code/Password Is Globally Configurable.
  •  Customer Specific Configurability on the customer Account.

Installation


Get Addons → Enterprise → Two-Factor Authentication.

Addon will be installed successfully, re-login to use the feature!!

Configuring the Two-Factor Authentication.


Go to Configurations→ Settings→ Security and enable the two-factor

As seen in below above screenshot, there are the fields explained in the below table for the Two-Factor authentication needs configuration.

Field Name

Field Description

Two-Factor AuthenticationSet enable/disable for Two-factor Authentication
OTP Expire Time(min)Set the timeout for the OTP once email is sent to the registered email address.
Wrong AttemptsSet the threshold value for the wrong attempts to be made in the timeslot.
Ban Time(min)Set the time frame for which the account should be banned.
Find Time(min)Set the time Frame for the wrong attempts i.e. in how much time the wrong attempts are made, if the threshold is breached then the account will be banned.


As seen below, once the user login and enters the credentials system asks for the OTP sent to the email. Below is the timer where we can see that the OTP can be resent by the system, this will be the same time that is setup done on the settings menu in the admin portal for the field "OTP Expire Time(min)".

Below is the OTP email format for receiving the password on the registered email address for the account.

In the Customer Profile as well one can enable/disable the Two-Factor authentication based on needs and requirements.