How to enable two-factor authentication

What is authentication

Authentication is a process by which a person or computer proves they are who they claim to be. An example is a person signing in to a web site by providing their userid (username or email)  and password.

What is two factor authentication

Two-factor, also called 2FA, adds a second layer of security when signing in. Normally, you verify your identity with a single factor, such as a password, which is something you know. Verifying your identity using a second factor, like a smartphone or hardware token which is something you have, prevents others from signing in as you, even if they know your password.


How is two factor authentication been used in HasHealth

At HasHealth, two-factor authentication is used to secure applications that have sensitive institutional data to reduce the risk that this data will get compromised.
The HasHealth system can use a smartphone app, a phone SMS, or an email as a second factor to authenticate you. Most people use an authenticator App via the smartphone which runs on a variety of smartphones and tablets and is simple to use, Google Authenticator App is one of them.

Why do I need two factor authentication

Passwords can often be stolen, guessed or hacked, and you may not even realise your password has been compromised. With two-factor authentication protected services, a compromised password won’t mean a compromised account.

Enable 2FA

Access account settings

  • Click on the “Settings” menu
  • Select “My Account” from the dropdown menu

Enable 2FA

  • Under “Security”, you will find a switch labelled “Two Factor Authentication”
  • Toggle the switch to the “ON” position to enable 2FA for your account

Verify your identity

  • Enter your password to confirm your identity

Scan the QR code

  • Using your preferred authenticator app (such as Google authenticator or Authy), scan the provided QR.
  • After scanning the QR code, your authenticator app will generate a temporary verification code
  • Enter this code into the application to complete the setup

Completion

  • Once the code is successfully entered, 2FA will be enabled for your account


Signing in with 2FA

  • On the login screen, enter your username and password
  • Enter 2FA code
    • After entering your username and password you will be prompted to enter the 2FA code generated by your authenticator app
    • Open your authenticator app to retrieve the code and enter it in the provided field
  • Once entered, you will grant access to your account

Disabling 2FA

Access account settings

  • Click on the “Settings” menu
  • Select “My Account” from the dropdown menu

Enable 2FA

  • Under “Security” you will find a switch labelled “Two Factor Authentication”
  • Toggle the switch to the “OFF” position to disable 2FA for your account

Verify your identity

  • You will be prompted to enter your 2FA code from your authenticator app
  • Once entered, 2FA will be disabled and not prompted upon  your next login