Multi-Factor Authentication

Multi-factor authentication (MFA) is a method of confirming a user's claimed identity in which a computer user is granted access only after successfully presenting two or more pieces of evidence (or factors) to an authentication mechanism. These factors can be something the user and only the user knows, something the user and only the user has, and something the user and only the user is. Multi-factor authentication is often used to increase a website’s level of security.

Time-based One Time Password

A One Time Password (OTP) is a password that is valid for only one login session or transaction. The most important advantage that is addressed by OTPs is that, in contrast to static passwords, they are not vulnerable to replay attacks. Time-based one-time passwords change periodically, for example, every 30 seconds.

To access a website that uses a time-based one time password, you need three pieces of information, your username, your password, and a current time-based one time password.

Google Authenticator is a free time-based one-time password app for your smartphone. To generate a time-based one time password, you will need to install the Google Authenticator app on your smartphone or tablet.

To Install The Google Authenticator App on your device

iPhone and iPad

Download the app from appstore.com/googleauthenticator open_in_new

Android

Download the app from play.google.com/store/apps/details?id=com.google.android.apps.authenticator2&hl=en open_in_new

Setting up the app

To setup an account in Google Authenticator using Scan Barcode:

  • Open the app and tap the BEGIN SETUP or + button, then choose Scan barcode.
  • Point your device at the barcode provided. Ensure that Time-based is selected. Tap on Add or DONE to create the account.

To setup an account in Google Authenticator using Manual Entry:
  • Open the app and tap the BEGIN SETUP or + button, then choose Manual entry.
  • Enter an Account name, for example, the name of the website that you want to log in to.
  • Enter the Key. The key is a combination of letters and number, for example, ACB4DEF7GH8. Ensure that Time-based is selected. Tap on Add or DONE to create the account.



Once you have created an account, Google Authenticator will generated a new time-based one time password, every 30 seconds.