Two-factor authentication

What is two-factor authentication?

Two-factor authentication (also known as 2FA) is an authentication method in which a computer user is granted access only after successfully presenting two pieces of evidence (or factors) to an authentication mechanism. It is a method of confirming users' claimed identities by using a combination of two different factors: something they know, something they have, or something they are.

  • Something you know: This could be a personal identification number (PIN), a password, answers to “secret questions” or a specific keystroke pattern

  • Something you have: Typically, a user would have something in their possession, like a credit card, a smartphone, or a small hardware token

  • Something you are: This category is a little more advanced, and might include a biometric pattern of a fingerprint, an iris scan, or a voiceprint
2FA is an extra layer of security used to make sure that people trying to gain access to an online account are who they say they are. First, a user will enter their username and a password. Then, instead of immediately gaining access, they will be required to provide another piece of information. With 2FA, a potential compromise of just one of these factors won’t unlock the account. So, even if your password is stolen or your phone is lost, the chances of someone else having your second-factor information is highly unlikely. Looking at it from another angle, if a consumer uses 2FA correctly, websites and apps can be more confident of the user’s identity, and unlock the account.

How two-factor authentication works within ReadyCMS

The most popular form of two-factor authentication uses a software-generated time-based, one-time passcode (also called Time-based one-time password algorithm, or TOTP). 
  1. First, a user must download and install a free 2FA app on their smartphone or desktop. They can then use the app with any site that supports this type of authentication.

    Download Google Authenticator
  2. At sign-in, the user first enters a username and password, and then, when prompted, they enter the code shown on the app. Since app-based 2FA solutions are available for mobile, wearables, or desktop platforms — and even work offline — user authentication is possible just about everywhere.

How to activate two-factor authentication

To improve account security in this version of ReadyCMS, a two-factor authentication option is added for all administrators and instance users.

Learn how to enable two-factor authentication.

Related topics:



Help us improve our documentation

Suggest changes or request new documentation

Suggest changes