Sigillo di ateneo

Two factor authentication

Importance of two factor authentication

  • Two factor authentication add a security layer that thwarts most of the phishing strategies;
  • Passwords are less critical, users can be less concerned about rotating them or choosing developing overly complex passwords.

Limits of this deployment

  • With this procedure you are setting a second factor on the web SSO. Applications with legacy authentication and web-less application like wi-fi, log-in to desktop are untouched;
  • If you already set a second factor on Google Gmail or Microsoft Entra you will be promped twice to enter the second factor.

Set-up

That's the easier part!

  • You need a app on the smartphone to generate the Token Code. Please download from Google Play Store or Apple Store one of the many available authenticators. If in doubt, pick Twilio Authy (more features) or Google Authenticator (easier);
  • Connect to the console and follow instructions.

How it works

Each time you authenticate on a service with SSO, after the usual form with username and password you will be prompted to enter a six digit code to be read from your authentication app on your smartphone.

Add/change device

If you switch smartphone, if you get another device like a tablet and you would like to use it to store the authentication app, you can just do what you want. In the console you can re-dispay the QRCode to initialize a second app, or you can delete and re-insert to revoke the older authentication code.

How to get help

Unfortunately no help desk is available now. In this tour, you are on your own, kid.