Two-Factor Authentication

Two-Factor Authentication

Two-factor authentication is a way of verifying a user’s identity by using a combination of two different verification methods. It adds an extra layer of security, thereby ensuring that only authorized user(s) can access an account, even if the password has been compromised.

In Contentstack, the two methods used for two-factor authentication are:

  • Username and password (normal login credentials)
  • One-time security code via Authy app OR one-time security code via SMS

Enable Two-Factor Authentication

Here are the steps to enable two-factor authentication for your account:

Step 1. Go to ‘Security’

Sign in to Contentstack, and click on your profile name on the top right-hand side corner of the page. Then, select ‘Security’.

Step 2. Enter mobile number

Under Security, scroll down to ‘Two-Factor Authentication’. Enter your mobile number, along with the country code, in the given fields. Click ‘Enable 2FA’.

2fa.png

Step 3. Get a verification code

You will be prompted to select one of the two available methods for verifying your identity: Authy App and Text Message.

  • Authy App: This method supports verification via Authy mobile app (available for iOS, Android, and Desktop). To use this method, you need to first install the application on your mobile phone or desktop PC, and complete the registration. It will then generate a security token, which you need to enter for verification.
  • Authy.png

  • Text Message: This method supports verification by sending a security code via SMS to the specified mobile phone for enabling two-factor authentication.
  • 2FA text.png

Note: The two options are available for verifying your phone number during the enabling process of two-factor authentication. It does not set the selected method as your preferred method for logging in.

Step 4. Complete 2FA setup

Select ‘Finish’. With this step, two-factor authentication is enabled for your account. Subsequently, you will receive a confirmation email at your registered email address.

Step 5. Login with 2FA

Log out of your Contentstack account. Log in again by entering your username and password. The next screen will prompt you to enter the security code.

verify.png

Irrespective of the method selected for verification in Step 3, the login page expects the security code that is visible on the Authy app on your mobile phone. When you launch it, you will see a security token and a timer to indicate the time (in seconds) within which the token will expire. Enter this token on the login page and you will be logged in immediately.

Authy app.png

In case you do not have access to the Authy app, you can log in using an SMS verification - but please note this isn’t the preferred method as it’s not as secure. To use this workaround, click the ‘Send me an SMS’ link located below the input field available for entering the security code.

10.png

Reset Phone Number

Once two-factor authentication is enabled, the login system (via either Authy or SMS) uses your registered phone number to verify your identity. Consequently, if you do not have access your registered phone number (if you changed it or otherwise), it won’t be possible to log in. Thankfully, Contentstack has a way around this.

Here’s the process to change your verified phone number:

Step 1. Go to the ‘Two-Factor Authentication’ page.

Step 2. Click the ‘Reset your phone number’ link visible beside the phone number field.

reset phone.png

Step 3. Enter the new number in the phone number field.

Step 4. Select a method to verify your phone number, and perform the verification process as you normally do while enabling two-factor authentication.

Disable Two-Factor Authentication

You can disable two-factor authentication in a few steps. However, it is important to note that doing this will remove the additional layer of security from your account. Contentstack highly recommends keeping it enabled.

Here are the steps for disabling two-factor authentication:

Step 1. Go to the ‘Two-Factor Authentication’ page.

Step 2. Click the ‘Disable 2FA’ link located below the phone number fields.

disable 2fa.png

Step 3. On the dialog box that appears, confirm by clicking on ‘Disable’.

disable.png

Once two-factor authentication is disabled, you will be able to log in to your account by simply entering your registered email address and password.

Was this article helpful?
top-arrow