How to set up two-factor authentication

We are proud to announce the release of ISL Conference Proxy 4.4.1721.9 for Windows and Linux. In the long list of improvements and new features, I would like to point out the one that is really worth considering if you’re keen to enhance the security of your remote desktop support services – that’s two-factor authentication.

ISL Online allows two-factor authentication.

First, I need to tell you that two-factor authentication, commonly abbreviated to 2FA, featured in the latest release is available to server license users for now. The feature will be rolled out to the ISL Online’s public cloud in the following weeks.

Second, 2FA will not turn on automatically, neither will ISL Online ask you about it with your next login. You will need to activate the second level of security manually. Now, let’s see how you can do that.

How to enable two-factor authentication for your ISL Online account?
Step one: To get two-step authentication you will first need to upgrade your Server License with ISL Conference Proxy 4.4.1721.9

Step two: Log in to your ISL Conference Proxy and select “Security” in the top right drop-down menu.

Click “Security”.

Step three: You are now on the Security page where you can manage your security settings, as well as turn on two-factor authentication. So, go ahead and click on the “2-Step Verification”. Note that once you activate two-step verification your password won’t be enough for a login. You will need to provide the security code by using your phone, email, authenticator app or security key.

Select “2-Step verification”.

Step four: Now is the time for you to choose your second step verification method. You have four options:
• Authenticator app
• Phone
• Email
• Security key

Authenticator app is an easy way to get security codes. First, you’ll need to download and install an authenticator on your mobile phone such as Google Authenticator, Twilio Authy, Duo Mobile or Microsoft Authenticator. Now, let’s choose “Authenticator app”, give it a name and then scan the barcode. Your app will generate a security code you need to type in. The next time you log in to your ISL Online account, after entering your password, you’ll need to provide also a security code.

Scan the barcode with Authenticator app.

The app generates the code which lasts 30 seconds.

Enter the code.

Authenticator app runs locally on your device and works even if your device doesn’t have an Internet connection. You can add more authenticators, but don’t forget to choose the default one.

Phone is also a popular option of getting security codes. Each time you will log in to your ISL Online account you will receive a text message with a code. To set your phone as verification method, you will need to enter your phone number. Via SMS you will receive a code, which you then type to finalise the setting.

To enable SMS service, you will first need to get a Twilio account. Twilio uses two credentials to determine which account an API request is coming from. The “Account SID”, which acts as a username, and the “Auth Token” which acts as a password. You will find your API credentials in the Twilio console dashboard. Once you have the credentials, please follow our manual to enable SMS sending on your ISL Conference Proxy. If you should encounter any problems, come to ISL Online live chat and we will activate this service for you.

Enter your phone number.

You will receive an SMS with a security code on your phone.

Type in the code from your phone.

Email is the next on the list of authenticator options. You now already get the picture. Enter your email where you would like to receive security codes each time you log in to your ISL Online account, check your email and type in the code.

Enter your email address.

Check your inbox and open the email with the confirmation code.

Copy and paste the confirmation code.

Security key (FIDO U2F Security Key) is the last but not least authentication method we offer. It’s a small device that connects to your computer through the USB port (e.g Yubico key). First, give your key a name, insert it into your computer and tap a blinking gold disc or button on your key. A good thing is that in this case, you don’t have to re-type the code from your phone or email. On the other hand, it’s a small key and it can quickly get lost if you don’t keep it safe.

Insert your security key into your computer.

Tap the blinking gold disc or button on your security key.

Congratulations, you have just set up the two-factor authentication and made your ISL Online account safer!

You can set more methods for the second step of verification, but you will have to select the default one. That is where the code will be sent. You can also disable two-factor authentication only for selected devices or computers and keep it on all others where you log in to your ISL Online account and services.

For more detailed instructions on setting up two-factor authentication for your ISL Online account, you’re welcome to visit our online manual.

What is two-factor authentication?
Two-factor authentication, or 2FA as it’s commonly abbreviated, is an additional layer of security designed to prevent unauthorised access to your account. When you have to enter only your username and one password, that’s considered a single-factor authentication. The second factor makes your account more secure. There are three generally recognized factors for authentication: something you know (such as a password), something you have (such as a hardware token or cell phone), and something you are (such as your fingerprint). Two-factor means the system is using two of these options, in ISL Online’s case the first two factors.

Why is two-factor authentication important?
To put it simple, two locks are better than one. Turning on two-factor authentication is like getting yourself another lock. It’s no magic wand, it can’t guarantee 100% security, nothing does, but it definitely reduces chances of unauthorised access to your account.

So, even if someone manages to get your password, if they aren’t also in possession of your cell phone or whatever else is required to complete the second step, they can’t log into your account.

This entry was posted in Instructions, isl online, security, server license, technology, two-factor authentication, Uncategorized, update and tagged , , , , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s