What is Two Factor Authentication or 2FA?
Two-factor authentication (2FA), sometimes referred to as two-step verification or dual-factor authentication, is a security process in which users provide two different authentication factors to verify themselves.
2FA is implemented to better protect both a user's credentials and the resources the user can access. Two-factor authentication provides a higher level of security than authentication methods that depend on single-factor authentication, in which the user provides only one factor using a password. The two-factor authentication method rely on a user providing a password as the first factor and a second, factor using a security code sent to the user's designated email or mobile phone (if a sms text service subscription is enabled within your Logic admin).
2FA can be enabled for admin access and customer access (front-end users) independently. The default method is email. SMS Text authentication is also available but requires a separate SMS Text subscription.
How 2FA Works
Once 2FA is enabled for either admin users or customers, the method will be the same. Upon login, a message will be displayed to the user prompting them to Enter Verification Code that has been sent via email or text message.
The user will receive an email with a unique, single use 6-digit code like the one shown below.
Upon receiving the 6-digit verification code, the user should copy and paste it into the verification code field on the Logic login screen and submit. Please note that verification codes expire after 5 minutes. Do not save them to as password application or attempt to use more than once.
How To Enable Two Factor Authentication in Logic
2FA is enabled in Logic as a global feature meaning that once enabled, all users are subject to the same rule. The reason for this being a global setting is that if 2FA is not in place for all users, the site will not be secure. Logic provides separate 2FA settings for admin users and for customers (front-end users) so it is possible to apply to the admin but not customer accounts.
Here are the steps to enable 2FA on your Logic website or application.
1. Login to the Logic admin using your email and password.
2. Go to Website Settings within the Settings tab located in the left-side navigation bar.
3. Select the "Miscellaneous" tab within Website Settings and scroll down to the Two-Factor Authentication section.
4. Enable 2FA from menu - By default, the 2FA method is to send a code via Email. This is the preferred method as SMS Text will require a gateway subscription. Use the menus on the left to enable 2FA for admin users and / or optionally for website users (customers).
5. Save your changes. 2FA is now enabled.
Warning: Do not enable 2FA with SMS Text method if you have not previously subscribed to and integrated an SMS Text gateway method our you will be locked out of your application.