Two-factor authentication for CrashPlan for Small Business

Last updated
Save as PDF
Share
1. Share
2. Tweet

This article applies to CrashPlan for Small Business.
Looking for information about Incydr or CrashPlan for Enterprise? Search or browse.

Incydr, no.

CrashPlan for Enterprise, no.

Code42 for Enterprise, no.

CrashPlan for Small Business, yes.

Overview

Two-factor authentication increases the security of your Code42 environment by requiring users to provide additional verification before accessing the Code42 console or CrashPlan for Small Business mobile app.

Requirements

Two-factor authentication uses the Time-based One-Time Password (TOTP) algorithm and a 160-bit secret key for each user. We officially support and recommend the Google Authenticator mobile app.

Considerations

Two-factor authentication affects access to the Code42 console and CrashPlan for Small Business mobile app. It does not affect access to the Code42 app on user computers.
To configure two-factor authentication for your organization or reset it for a user, you must sign in to the Code42 console as a CrashPlan for Small Business administrator. If you're not a CrashPlan for Small Business administrator, contact your organization's administrator.

Enable or disable two-factor authentication

Sign in to the Code42 console.
Select User Account Settings.
In the Two-Factor Authentication section, select Enabled or Disabled.
- Enabled: Requires users to configure two-factor authentication (Google Authenticator is our recommended application). Users must then provide a one-time authentication code in addition to their CrashPlan for Small Business username and password to access the Code42 console and CrashPlan for Small Business mobile app.
- Disabled: Users are only required to provide their CrashPlan for Small Business username and password to access the Code42 console.
Click Save.

User sign in

After enabling Two-Factor Authentication, users are required to set up their account the next time they sign in. (Future sign-ins only prompt users to obtain the verification code from the Google Authenticator mobile app.)

Upon signing in to the Code42 console, the Set Up Two-Factor Authentication message appears.
Using the Google Authenticator mobile app, scan the QR code provided (see sample below).
In the Set Up Two-Factor Authentication message, enter the verification code displayed in the Google Authenticator mobile app.
Click Sign In.

Two-factor user setup

Reset two-factor authentication for lost, stolen, or new devices

If you've been using two-factor authentication, then need to reset it because a device is lost, was stolen, or you have a new device, follow the instructions below. Resetting two-factor authentication for a user invalidates the secret used to generate the user's TOTP, and prompts the user redo the initial configuration steps upon the next sign-in attempt.

For users

A CrashPlan for Small Business administrator must reset the two-factor authentication configuration for a user as follows:

Sign in to the Code42 console.
Select Users > Active.
Select the user.
From the action menu in the upper-right, select Reset Two-Factor Authentication.
Upon next sign-in attempt, the user is prompted to redo the initial configuration steps.

For administrators

If you're a CrashPlan for Small Business administrator and need to reset two-factor authentication for yourself, contact our Customer Champions for support.

External resources

Wikipedia: Time-based One Time Password (TOTP) algorithm