How do i set up 2-factor authentication security?

Similar Messages

• I am trying to set up two-factor authentication but none of my devices appear listed.

  I am trying to set up two-factor authentication but none of my devices appear listed. I am only given an option to add an SMS-enabled device. When I do this, I receive an SMS with a code, but have no way to continue in the browser. I have enabled find my iPhone on at least one device, and can see all my devices in the find-my-iPhone app. Am I missing something?

  As a check, this page walks you through the process:
  http://technofyi.com/2013/03/21/how-to-enable-apples-two-step-verification-featu re/
  His step 6 shows the 'Step 1 of 4' page where you should click 'Add an SMS-capable phone number'.
  His step 7 shows the 'Add a phone number' window where you can enter the phone number and click 'Next'. The phone should then receive the code by SMS.
  His step 8 shows the 'Verify Device' window which should appear automatically in which you can enter the code.
  Are you not seeing the window in step 8? if this is not popping up automatically then something is going wrong: you could try clearing your browser's cache and trying again. If it still won't work you may have to contact Support: Go to https://getsupport.apple.com ; click 'See all products and services', then ' 'iTunes', and then 'iTunes Store', then 'Account Management' then 'Apple ID account security' - this seems to be the nearest relevant option.

• How do I set the cal factor in a graph properties via a GUI

  How do I set the cal factor under properties in a graph window to different values using a GUI interface; button, or selector?

  Sorry about that, what I meant to say was "multiplier". I need two different multipliers at different times.
  Attachments:
  GraphProperties.PNG ‏40 KB

• How can I set up SSL login authentication on one domain for multiple domains

  Our site currently runs in 22 countries with 22 different
  country domains:
  www.mysite.com
  www.mysite.co.uk
  www.mysite.fr
  etc
  We want to use SSL on our login pages but realise that the
  cost of certification for every domain is expensive. One solution
  would be to channel all login activity to a single domain, eg:
  www.mysite.com/login.cfm?site=fr which would then redirect to
  www.mysite.fr – this is how Google do it
  But, currently we are using encrypted cookies for login
  authentication so we would have the problem of having to transfer
  the cookie info across domains securely. Is there any way of going
  about this?
  Any other suggestions would be great, too. We do plan to move
  to session management for logins but this is a longer term project
  so we are hoping to sort out the SSL prior to that.

  Can you not pass the values you need as URL parameters?
  Encrypt them befor you send them and then decrypt them on the new
  domain. Then add them to whatever place you need (cookie, session,
  etc.)?

• How can I set up two factor login on ASDM?

  I would like to have our users enter two separate passwords to be able to run ASDM (similar to user and enable passwords on the CLI).
  How do I do that?

  The only way I see it possible would be to have a OTP (one time password) server and use it as your authentication server for ASDM through RADIUS.
  The server would have to be configured to receive the user's password + token code/otp.
  So the user would use one username and on the password box would put his password + otp.
  The server would strip the otp part of the password and if it's correct it will forward the username and password (without the otp portion) to the AD server (or will locally do it if you have the user created there.)

• Two Factor Authentication How to Preserve Cookies?

  So, I am starting to set up Two Factor Authentication for various logins that I have. As a normal practice, whenever I close any browser I delete all cookies, and when shutting down my computer I do a Norton scan for cookies and delete them. The problem is that this deletes my two factor authentication cookies which I need. I tried setting up an exception, but the cookies get deleted anyway. How do I set this up to work, ie protect specific cookies from deletion?
  In Internet Explorer this is extremely easy to do. All you do is put a checkmark next to "Preserve Favorites Website Data".....Done. The equivalent in Firefox you would think is "Site Preferences", but that does not work the same as in IE and the cookies are deleted.

  Let all cookies expire when Firefox is closed to make them session cookies.
  *Firefox/Tools > Options > Privacy > "Use custom settings for history" > Cookies: Keep until: "I close Firefox"
  Create a cookie 'allow' exception for cookies that you would like to keep.
  *Firefox/Tools > Options > Privacy > "Use custom settings for history" > Cookies: Exceptions
  Note that clearing "Site Preferences" clears all exceptions for cookies, images, pop-up windows, software installation, passwords, and other website specific data.
  Clearing cookies will remove all specified (selected) cookies including cookies with an allow exception that you would like to keep.
  See also:
  *http://kb.mozillazine.org/browser.sessionstore.privacy_level

• How to not be required to use a security code ever...

  .... and this is the second attempt at posting... the first post got eaten ebcause I apparently needed to make a new username for the community, since for some reaosn my actual Skype name doesn't work? Whatever.
  So, yeah, having to wait for and enter a security code EVERY time I attempt to sign into Skype is driving me nuts. How do I keep this from happening? I basically have to sign in twice every time I want to sign into Skype, and the second sign in requires me to wait for a text or email to give me the code. This is the only account that makes me do this EVERY time I attempt to sign in. I understand the need for security, but maybe run the check every 25th time or something, not every time. Otherwise I want to know how to turn that "feature" off.

  Hi and welcome to the Skype Community,
  Are you signing in to Skype with a Skype name or with your Microsoft account (i.e. an email address)?
  If you are using a Microsoft account and you have set up two-factor-authentication on sign in you might require to use an authentication code. Apart from that specific scenarion you do not need to enter a security code every time you are signing in to Skype. It would help if you could share one or even multiple screenshot showing what happens when you start and try to sign in to your Skype app.
  Follow the latest Skype Community News
  ↓ Did my reply answer your question? Accept it as a solution to help others, Thanks. ↓

• How do I know if I set up Apple's two factor authentication?

  How can I tell if I ever set up Apple's two factor authentication and should make sure I can find the Recovery Key?

  Hi David,
  You can check to see whether you turned on two-step verification for your Apple ID by seeing if it will allow you to turn it off. Follow the instructions in this article, though you do not actually have to turn it off -
  Apple ID: Turning off two-step verification for your Apple ID - Apple Support
  Read this article for more information on two-step verification, including the Recovery Key -
  Frequently asked questions about two-step verification for Apple ID - Apple Support
  Thanks for using Apple Support Communities.
  Best,
  Brett L 

• How to deploy connection (Mac OS X Yosemite to Windows RDS) through the RD Gateway with Two Factor authentication (Safenet OTP) on Session host?

  Good day!
  Could you please help me? How to deploy connection (Mac OS X Yosemite to Windows RDS) through the RD Gateway with Two Factor authentication on Session host? How to open an authentication dialog that is the same as in Windows when logging on to network resources
  in Windows (Windows Security)?
  Our test environment: We have one RDS 2012 R2 server (all roles in one) and one session host in collection. On the session host installed Safenet Network Logon and it under GPO which disable all authentication, only OTP.

  Hi Sir,
  It seems that you are going to integrate 3rd party product into AD for authentication .
  I would suggest you to contact the vendor of Safenet for this deployment  scenario  :
  http://www.safenet-inc.com/multi-factor-authentication/authentication-management/safenet-authentication-manager-express-samx/
  Best Regards,
  Elton Ji
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] .

• With Multi-Factor Authentication ENABLED how can a admin connect remotely to manage Office 365 with PowerShell

  With Multi-Factor Authentication ENABLED how can office 365 admin connect remotely to manage Office 365 with Power-Shell ?
  When I key-in my credentials, auth fails with invalid username and password ?
  Does any know the procedure ?

  This question was closed over a year ago.   You will  need to start a new question.  You can post a link back here if you think it helps.
  I also recommend asking in the O365 developers forum for how to do bulk license upgrades.  You can use the answer here and just remove and then add the new license. 
  ¯\_(ツ)_/¯

• How do I set the about:config settings for all users? iprism keeps prompting from authentication for users.

  When users log on and try to open Firefox 23.0.1, users are prompted with Iprism Authentication. We made changes to the firefox about:config values "network.automatic-ntlm-auth.allow.-non-fqdn" and "Network.negotiate-auth.allow-non-fqdn" to true and it works, but only works on a per user basis. How can we set this up for all users?

  I would think the about:config entries discussed are ex-factory set to values each user has to change individually, after the installation has run its course. The solution could be to have patched files ready to install post factum:
  [https://developer.mozilla.org/en-US/docs/Mozilla/Preferences/A_brief_guide_to_Mozilla_preferences A Brief Guide to Mozilla Preferences - MDN]

• Two factor authentication. How secure will be this setup?

  I want to be able to have a passphrase + keyfile (on a usb stick) combination. So whoever is going to unlock the system has to HAVE something AND KNOW something to get access. Of course, this way, if the stick is lost, then the disk can't be decrypted. That's why there has to be a back-up usb stick. But if you merely duplicate the same key stored on stick (1) to stick (2), then whoever finds/steals stick (1) now knows your current keyfile. I want to make it so that loosing a usb stick will not weaken the security in any way, by making so that the keyfile stored on that usb stick can be easily made useless. So my plan is to do the following:
  HDD
      partition 1 | Contains encrypted keyfiles `Ke1`, `Ke2`
      partition 2 | Luks device, encrypted using the key `Ka`
  Usb Stick 1
      boot
      keyfile K1
  Usb Stick 2 (backup)
      boot
      keyfile K2
  where
  passphrase is `P`
  `Ke1`          is  `Ka` encrypted using K1 and P
  `Ke2`          is  `Ka` encrypted using K2 and P
  K1 and K2 are different. Both are randomly generated keyfiles.
  During the boot the following happens:
  1) It boots from the usb stick (1)
  2) It asks for a passphrase `P` in initrd. User types the passhprase.
  3) It read keyfile `K1` from the USB stick (1)
  3) It decrypts `Ke1` (which is encrypted using AES-256). It first decrypts it using `P`, then it decrypts it using K1. In the end you get the original `Ka`.
  4) It uses `Ka` to unlock the luks device on partition 2 and then runs the system from there. Of course, Ka is only in memory.
  If stick (1) is lost:
  Then you can nuke (e.g. using shred) `Ke1` and now the K1 which is on that stick (1) is useless. But you can now use stick (2) instead since there is another version of encrypted `Ka` stored (`Ke2`).
  If HDD is lost:
  Although the keyfile (`Ka`) that decrypts the luks partition is stored on the drive itself, nobody can use that keyfile, because it's encrypted. I.e. they will only find `Ke1` and `Ke2` there, which will be useless without a usb stick and a passphrase.
  Basic evil maid attacks (like infecting the MBR, which is what e.g. FinFisher does) should be impossible with this, because it boots from a flash that you carry with yourself.
  Any comments?
  P.S.
  The real system will look like this:
  HDD
      partition 1 | encrypted keyfiles
      partition 2 | luks device with LVM
          LVM swap
          LVM cryptdevice
              btrfs
                     /current-homeroot
                         /home
                         /root
                     /snapshot1
                         /home
                         /root
                     /snapshopt2 and etc
  USB Stick
      /boot
      Keyfile 1
  Then one can do incremental snapshots of the system.

  I use the Google Authenticator app on my phone as two-factor authentication when SSH'ing to my VPS.
  https://wiki.archlinux.org/index.php/Go … henticator
  You get emergency codes to write down so you don't need a backup device.
  I've not looked into whether or not you can use it to unlock a LUKS setup, but it's a PAM module so it might not be that difficult. It's worth searching for as an alternative to USB sticks.
  Last edited by slithery (2015-01-10 20:21:13)

• How can I implement  Multi Factor authentication with IAM products?

  Hi I would like to implement multi factor authentication that can be made generic with all IAM produts. Can anyone suggest an MFA factor like that? It shudnt be an add on or plug in. Instead it should be an in built feature. Can anyone suggest any idea?

  Opensso has such feature built-in. You can create an authentication chain in which you can add as many authentication mechanisms as you need.
  Although it is a built-in feature, there's no full support for all sorts of authentication methods. Some of them exist as plugins, like authentication modules for smart cards and biometrics because they are not sold by Sun Microsystems. However, there's a solution for you requrement even tough you might add some auth modules as plugins like biobex, activcard or auth modules from other vendors.
  Regards.

• Having trouble with Google 2 factor authentication and Mac Calendar

  Hello!  I recently started using Google 2-factor authentication on my Google Apps (Pro) account, and have successfully configured my gmail settings in OS X Mail so that inbound/outbound work correctly.  Here's where the problem is:  OS X uses a single password in the system account settings for calendar/contacts/notes, etc, so enter the login/password once and check the boxes for what services you want to use. But Google sees these as distinctly different apps, so when I enter an app-specific password, it only registers for one (i.e.:  contacts), but not for another or the rest of them (like calendar).  Has anyone had experience in setting this up? How can you get app-specific passwords to work with the rest of the OS X system applications besides mail?
  Thank you!

  Unfortunately, I already tried this several times prior to posting here.  The system won't let me add the same account more than once, and continues to prompt me for a password multiple times for each service.

• Two-factor Authentication in Norway

  I can't find the setting for enabling two-factor authentication. I live in Norway, and Norway was recently added to the list of countries supporting two-factor authentication. I have followed the instructions, but it seems the option is not there yet...

  Hello there, bthusby.
  How excellent that you now have the added security of two-step verification in Norway. The following Knowledge Base articles provide some great getting started steps and answers to frequently asked questions about it:
  Apple ID: About two-step verification and SMS
  http://support.apple.com/kb/HT5593
  To get started:
       Adding or removing SMS numbers
  Add or remove an SMS-capable number from your account:
  Go to My Apple ID.
  Select Manage your Apple ID and sign in.
  Select Password and Security.
  In the Trusted Devices section, select Manage.
  To add a number, select Add an SMS-capable phone number.
  To remove a number, select Remove next to the verified phone number associated with your Apple ID.
  Additionally the Frequently Asked Questions article provides a great overview of the feature as well:
  Frequently asked questions about two-step verification for Apple ID
  http://support.apple.com/kb/ht5570
  Thanks for reaching out to Apple Support Communities.
  Cheers,
  Pedro.