Changes To Two-Factor Authentication
It’s vital all customers place a mobile phone number in their accounts. We will send codes to this number to verify your identity.
To make our customer accounts more secure we will be removing the current two-factor authentication system and replacing it with time-based tokens. With the current two-factor system customers have created a pin code for access to their account. Whilst this has increased security, if your email account is compromised it’s still possible for a malicious user to request a reset of this password which would then allow access to your account.
With time-based tokens, you use an app like Google Authenticator to generate a code that will allow access to your account. Without this code access to your account will not be possible. We will be introducing this system gradually. On the 1st January 2020, the new two-factor authentication system will be compulsory for everyone.
Customers can now set up the new authentication system. To get started, follow the points below;
On your smartphone, download the Google Authenticator app from the relevant app store.
Login to your client account and click your name on the top right then click security settings.
Scroll to the bottom to Two-Factor authentication. You will notice the status is disabled. Click the green button to start the activation process.
Open the Google Authenticator app and scan the bar code displayed on your screen. The app will generate a code. Enter the code on-screen to finish the process.
You will now be presented with a backup recovery code. Take a copy of the code and guard it with your life. Anyone who has this code can access your account.
Upon your next login, you will be asked to generate a code form the app. Enter this on-site when requested. You can also use your backup code to gain access to your client area.
Users who lose their devices and backup code will need to submit a ticket to our support team which can be done without entering any codes. You will need to supply identification and the phone number we hold on file for you must be correct because we will send an authorization code to this number.
Users are advised to set up the new Two-Factor system as soon as possible as we have disabled the old system to prevent any conflicts. From 1st January the new system will compulsory for all users.
Two-Factor Authentication Activation Video
How was this article? Changes To Two-Factor Authentication