Configure Two-factor Authentication using Authenticator Application

This topic describes how to configure two-factor authentication for super administrator account using an authenticator application on your mobile phone.

Prerequisites

You have installed one of the following supported authenticator applications on your mobile phone.

Procedure

  1. Log in to PBX web portal, click your account at the top-right corner, then go to Change Password & Security > Security Settings.
  2. Select the checkbox of Two-Factor Authentication.
  3. In the pop-up Password window, enter your account password and click Confirm to verify your operation.
  4. Select Authenticated by Authenticator.
  5. Add your account to the authenticator application via either of the following methods.
    Method Instruction
    Scan QR Code to quickly add the account You can quickly add your account to the authenticator application by scanning the QR code provided by PBX.
    1. On your mobile phone, open the authenticator application, and select to scan QR code.
    2. Scan the QR code shown on PBX web portal.

      Your account is added to the application automatically, a 6-digit authentication code is shown.

    Manually add the account In case you can not scan QR code, you can manually add your account and enter the secret key provided by PBX.
    1. On PBX web portal, click Can't scan beside the QR code.

      PBX will generate a secret key, note it down for later use.

    2. On your mobile phone, open the authenticator application, and select to manually add an account.
    3. Enter the relevant information, and paste the secret key.
      Note: If you need to complete more configurations for the secret key, you should set SHA1 as the algorithm for TOTP protocol, and set to generate 6-digit code with an interval of 30 seconds.

      Your account is added to the application, a 6-digit authentication code is shown.

  6. On PBX web portal, enter the 6-digit authentication code in the Authentication Code field.
  7. Click Save.

Result

  • The webpage prompts a message "Edited successfully.", which means that you have successfully set up two-factor authentication.
  • Next time you log in to PBX web portal, you need to enter an authentication code additionally.

Troubleshooting: What if my extension users fail to log in with two-factor authentication?

You can disable two-factor authentication for their extension accounts, so that they can directly log in with their username and password.