Introduction
To enhance the security of customer accounts, the main account in MasterDC Customer Administration uses two-factor authentication (2FA). At login, users must provide a second verification method in addition to their username and password, either via SMS or an OTP method. This guide shows how to set up 2FA.
Setting Up Two-Factor Authentication
Two-factor authentication (2FA) is mandatory for the main account in the Customer Administration. For sub-accounts, 2FA is optional.
You can use one of the following verification methods:
- SMS code
- OTP application (one-time password generated by a mobile app, such as Microsoft Authenticator, Google Authenticator, etc.)
To select or change your 2FA method, go to Customer Administration and click your username > Edit profile > Security tab.
Notifications About 2FA Changes
If you change the 2FA settings or disable 2FA, an email notification is sent to the person assigned the Security competency. This competency can be assigned to only one person per customer account.
The person with the Security competency receives notifications about 2FA changes for both the main account and all sub-accounts. For more information about users, contacts, and competencies in your account, see the guide: Customer Account: Managing Users and Permissions.
Login Via SMS
The first way is to log in via SMS code. After adding and verifying your phone number, you will receive a verification SMS every time you try to log in to the Customer Administration.
To add your phone number, follow these steps:
1. In the section Login via SMS click on Add Number and confirm it by clicking the Save button.
2. For verification, use the Verify Number button and proceed by clicking the Send Code button.
3. Enter the SMS code into the Customer Administration.
You can modify the phone number using the Change number and Delete number buttons.
OTP Authentication
The second option is the OTP (One-Time-Password) method. This authentication method works by entering a one-time password that you generate in a mobile app (e.g. Google Authenticator or Authy) on your phone. To use this method, you need to connect your device in the Customer Administration.
- On the OTP Authentication, click Connect device. If you don’t already have one of the OTP apps installed, download it from the app store on your device.
2. After installing the application, open it and click on the option Add Account or +.
3. In the application, you can choose between scanning the QR code or manually entering the code. Select the option to scan the QR code.
4. In the Customer Administration, click on Display QR Code. Scan the code using the camera on your phone and proceed by clicking the Verify button.
5. The application will automatically generate a time-limited one-time code. Enter this code to activate OTP authentication.
Keep the OTP app installed on your device. Each time you log in to Customer Administration, you will be required to enter an authorization code generated by the app.
You can deactivate OTP verification at any time in your account: username > Edit profile > Security. On the OTP Authentication tab, click the Disable verification button.
If You Lose Your OTP Device
- Install one of the OTP applications on a new device.
- After installing the application, open it and click on the option Add Account or +.
- Instead of scanning a QR code, choose the option to Enter code manually.
- In the Key / Secret Key field, enter the backup code you saved when you activated two-factor authentication using OTP.
- Confirm the pairing by clicking the Finish button.
- Now log in to the Customer Administration as usual and verify the login with the newly generated password in the OTP application.