Two-factor authentication increases the security of your Code42 environment by requiring users to provide additional verification before accessing the Code42 console or CrashPlan for Small Business mobile app.
Two-factor authentication uses the Time-based One-Time Password (TOTP) algorithm and a 160-bit secret key for each user. We officially support and recommend the Google Authenticator mobile app.
- Two-factor authentication affects access to the Code42 console and CrashPlan for Small Business mobile app. It does not affect access to the Code42 app on user computers.
- To configure two-factor authentication for your organization or reset it for a user, you must sign in to the Code42 console as a CrashPlan for Small Business administrator. If you're not a CrashPlan for Small Business administrator, contact your organization's administrator.
Enable or disable two-factor authentication
- Sign in to the Code42 console.
- Select User Account Settings.
- In the Two-Factor Authentication section, select Enabled or Disabled.
- Enabled: Requires users to configure two-factor authentication (Google Authenticator is our recommended application). Users must then provide a one-time authentication code in addition to their CrashPlan for Small Business username and password to access the Code42 console and CrashPlan for Small Business mobile app.
- Disabled: Users are only required to provide their CrashPlan for Small Business username and password to access the Code42 console.
- Click Save.
User sign in
After enabling Two-Factor Authentication, users are required to set up their account the next time they sign in. (Future sign-ins only prompt users to obtain the verification code from the Google Authenticator mobile app.)
- Upon signing in to the Code42 console, the Set Up Two-Factor Authentication message appears.
- Using the Google Authenticator mobile app, scan the QR code provided (see sample below).
- In the Set Up Two-Factor Authentication message, enter the verification code displayed in the Google Authenticator mobile app.
- Click Sign In.
Reset two-factor authentication for lost, stolen, or new devices
If you've been using two-factor authentication, then need to reset it because a device is lost, was stolen, or you have a new device, follow the instructions below. Resetting two-factor authentication for a user invalidates the secret used to generate the user's TOTP, and prompts the user redo the initial configuration steps upon the next sign-in attempt.
A CrashPlan for Small Business administrator must reset the two-factor authentication configuration for a user as follows:
If you're a CrashPlan for Small Business administrator and need to reset two-factor authentication for yourself, contact our Customer Champions for support.