Egnyte offers four distinct mechanisms for two-step login verification, allowing users to select the option that best suits their needs.
This article provides detailed instructions for enabling and registering for two-step login verification using the different available mechanisms. Additionally, it offers insights into the process of disabling two-step verification.
Skip Ahead To...
Enable and Register Two-Step Login Verification
Login with TOTP Authentication Method
Login with Twilio Authy Push Notification
Login with Twilio Authy Mobile App
Login with Phone Number
Login to the Desktop App
Disable Two-Step Login Verification
Additional Resources
Enable and Register Two-Step Login Verification
- If the account Administrator has not made TSLV mandatory, the user can opt into the feature by navigating to Settings -> My Profile -> My Preferences -> Security.
-
Click the toggle button next to Two-step login verification to enable it and click Save at the bottom of the screen.
- The user will be automatically logged out of their account. They will need to re-enter the username and password and click Get Started.
If the Admin has enforced TSLV, the following screen below will be displayed when registering. - The user will be asked to specify a way to register the device:
- TOTP authentication method using Authenticator app
- Twilio Authy authenticator App
- Phone Number
Phone number option is not available with Basic Two-Factor Authentication.
In general, Egnyte recommends using an authenticator app that supports the TOTP authentication method as it is the most secure method of two-step login verification. Alternatively, users can utilise Twilio Authy Mobile app for two-factor authentication. - Download an authenticator app on the mobile phone that supports TOTP authentication method (Example: Google authenticator, Microsoft authenticator). Scan the QR code from the authenticator app and enter the code presented. Click Next.
- A message will appear confirming successful set up. Click on Continue to access the Egnyte platform.
- Alternatively, download the Twilio Authy App on the mobile phone.
- Upon downloading the Twilio Authy Mobile app.
- iOS: Click the + (add account) icon and then select Scan QR Code to scan the QR code that is displayed on the computer screen.
- Android: Click the menu icon (three dots), Add Account, and then Scan QR Code.
- Enter the code displayed in the Twilio Authy App.
- A confirmation of successful registration will appear. Click Done, to be logged into Egnyte.
- Alternatively, the user can register their phone number to receive TFA codes via SMS or voice call (this option is not available with the Basic Two-Factor Authentication)
- Select the country, enter the phone number, and click Next.
Authy does not allow the use of Virtual Numbers (Google Voice, Magic Jack, Skype…) for text message or voice call authentication. Users can use the Twilio Authy Mobile App as an alternate option.
-
If the user enters a mobile phone number, they will see two possible options to receive the code: Use text messages and Use voice call. For a landline number, there will be only the Use voice call option.
-
Enter the code that was received and click Next.
- The user will be asked to download the Twilio Authy App to make logging in quicker and more secure in the future. We highly recommend using the app. If you would like to continue without using the app, click Skip.
- The user's phone number will be successfully registered and they will be logged in to Egnyte.
Login with TOTP Authentication Method
- Log in to Egnyte with username or email address and password.
- A screen will appear asking for the OTP. Enter the TOTP appearing in the authenticator app and click Next.
The user will be logged into their Egnyte domain after entering the correct code.
Login with Twilio Authy Push Notification
- Log in to Egnyte with username or email address and password.
-
A screen will appear stating that Authy has sent a push notification.
- Open the notification from the notification tray to be directed to the mobile app. Tap Approve if the login date and time match while logging in.
- Within a few seconds of tapping Approve, the user will be automatically logged into Egnyte.
Login with Twilio Authy Mobile App
- Log in to Egnyte with username or email address and password.
- A page will appear asking for a .
- Open the Twilio Authy App. If there is more than one account registered with the app, the user will need to select the Egnyte domain account to locate the code.
The code changes every 20 seconds. - Enter the code on the Egnyte screen and click Next.
A message will appear confirming successful set up. Click on ‘Continue’ to access the Egnyte platform. - If the code is valid, the user be granted access to Egnyte.
Login with Phone Number
Note that this option is not available with the Basic Two-Factor Authentication
- Log in to Egnyte with the username or email address and password.
-
If the 'Use Phone Number' option was selected during the TSLV setup process, a screen will appear asking for a delivery method for the code. Choose between a text message or a voice call.
If a mobile phone number was registered, there will be two options to choose from: Use text messages or Use voice call. If a landline number was registered, there will only be the option to Use voice call. Make your selection and click Next.
Twilio Authy does not allow the use of Virtual Numbers (Google Voice, Magic Jack, Skype…) for text message or voice call authentication. You can use the Twilio Authy Mobile App as an alternate option.
- Users who have Authy App installed but want to authenticate using the phone number can click on the 'Unable to use Authy App?' option on the TFA screen.
- Depending on the option selected, the seven-digit code will be delivered via a text message or phone call. Enter the code and click Next.
- Once the code has been verified, access will be granted to Egnyte.
Login to the Desktop App
Once TSLV has been set up through the Web UI, it can be used to log in to the Desktop App. Users will get the TFA popup only while adding or authenticating a drive.
To verify the account, users can choose one of the following methods:
- Mobile Push
- Passcode
- Phone Number (VoiceCall or SMS). Note that this option is not available with the Basic Two-Factor Authentication
Disable Two-Step Login Verification
While users can set up and configure the two-step login verification (aka TFA) as another layer of security while logging in, they can always disable it if they want to.
To disable two-step login verification:
- Navigate to Settings -> My Profile -> My Preferences -> Security
- Disable the Two-step login verification toggle.
- Click on Save.
On saving the preferences with two-step login verification disabled, the system will check when was the last time user’s identity was confirmed using two-step login verification.
If the user’s identity was last confirmed within the last 60 minutes, the user will be allowed to disable two-step login verification without any additional identity confirmation.
However, if the last identity confirmation was performed more than 60 minutes ago, the user will be asked to log in again and confirm their identity before the two-step login verification can be disabled as shown below.
When the user opts to re-login, the user’s identity is confirmed using the two-step login verification after the user logs back in.
Post identify confirmation, the user will be redirected to the preferences screen where they will get the option to disable the two-step login verification as shown below.
The two-step login verification will be disabled only if the user selects the Disable Now button from the above step.
Users can enable two-step login verification at any point in time.
Additional Resources
Two-Step Login Verification - Admin Guide
Two-Step Login Verification - FAQs