Two-factor authentication feature in C1 prevents unauthorized users and hackers to access C1 modules.
In addition to regular login credentials, the second authentication process enhances login security for the account.
Once Two-Factor Authentication is enabled, all C1 portal users including account admin should follow “Two factor authentication” protocol to login to C1.
It uses Google authentication app to generate user verification code in addition to their respective login password.
All users are allowed to login from individual module login page without “Two-Factor Authentication”.
Please refer below sections to get complete details on “Two factor authentication”.
1.Enable,configure and logging into C1 portal using Two Factor Authentication 2.Login C1 portal without “Google authenticator” app (without smartphone) 3.Reset Two Factor configuration of staff account in C1 portal
1.Enable,configure and login C1 portal using “Two Factor Authentication”
Step[1]: Login C1 portal (one.comodo.com) using your regular account admin credentials
Step[2]: Click 'Management ’ button in the top . Now click ‘Account’ button from the drop down option available.
Step[3]: Navigate to "Account Security Details’ tab.
Step[4]: Select check box associated with ‘Enable’ button to enable two factor authentication.
Step[5]. Click ‘Save Changes’ button in the bottom of the window to activate your change. When ‘Save changes’ button is clicked, a popup window will appear with ‘Configure Later’ and ‘OK’ options. Please select any of the options as mentioned below,
'<b>Configure Later</b>' - Click this button if you like to configure 'Two Factor Authentication' on your next login of C1 portal.
'<b>OK</b>' - Click this button if you like to logged out of C1 portal and configure Two Factor Authentication' settings now.
Step[6]: Two-Factor Authentication window will appears , when you try to login C1 portal after “Two-Factor Authentication” is enabled by account admin as explained in Step[4] .
Click "CONFIGURE MY AUTHENTICATOR' button on this new window.Refer below screenshot,
Step[7]: Configure Two Factor Authentication as shown in the screenshot.
1: Download and install “Google Authenticator” app for your smartphone. “Google Authenticator” app support is available for both android and iOS mobile operating system.
a) Click "Google Play" icon to view and install "Google Authenticator" app for android smartphone. For illustration purpose "Two Factor Authentication" has been explained using android app further.
b)Click "App Store" icon to view and install "Google Authenticator" app for iOS smartphone.
Scan QR-code displaying in C1 web portal by newly installed Google Authenticator app from your smartphone. To do so, please follow below steps,
1.Install "Google Authenticator" app in your smartphone.
2.Tab 'Begin' Button in "Google Authenticator" app of your smartphone .
Tab ‘Scan a barcode’ option and try to scan QR code displaying in the C1 web portal . Please provide necessary permission to “Google Authenticator” app to scan QR code
If you are unable to scan QR code using the app due to any technical difficulties,
1 .Tab "Enter product key" in app from your smartphone
2. Expand 'I can't scan QR-code' option.
3. Enter account email address and token key available from C1 web portal to the app.
4. Tab 'ADD' button .
If you are unable to scan QR code using the app due to any technical difficulties,
a .Tab "Enter product key" in app from your smartphone
b. Expand 'I can't scan QR-code' option.
c. Enter account email address and token key available from C1 web portal to the app.
d. Tab 'ADD' button .
After successful QR code scanning or Token key being entered, verification code will be displayed in the mobile app. Now enter this verification code in C1 portal as illustrated in screenshots.
Click ‘Pair’ button in the C1 web portal to sync app with C1 web portal authentication for your account.
After pairing completed, 10 backup codes will be displayed in C1 portal . These backup codes also sent to account email address.Backup codes are used to login account when unavailability of smartphone access during 'Two Factor Authentication" login.
Note: Backup codes can be used one time. When all backup codes expired, account user should request account admin to reset “Two Factor Authentication” configuration settings.
Click ‘Next’ to complete “Two Factor authentication” setup and proceed to account access.
2.Login C1 portal without “Google authenticator” app (without smartphone)
There are cases where account user losses smart phone or unable to access smartphone during “Two Factor Authentication” login. In that cases C1 portal accepts backup codes which was sent to email during “Two Factor authentication” setup. Please follow below steps to login C1 portal using backup codes,
Step[1] :Login C1 portal using regular account credentials.
Step[2]: After regular login ,Two-Factor Authentication window appears and asking account user to enter verification code.
Step[3]: Click “Authenticator unreachable” button in the bottom.
Step[4]: Enter any of the backup codes available. Backup codes are valid for one time. ie. Once used, same backup code cannot be used for next login.
Step[5].Click “Submit” button to complete C1 web portal login using “Two-Factor Authentication”.
3.Reset Two Factor configuration of a Staff account in C1 portal
Account admin can reset “Two Factor Authentication” settings for other staff as well as his/her own account. This will be helpful when all 10 backup codes were expired. Resetting “Two Factor configuration” will not disable two factor authentication for staff account instead C1 portal will ask account user to configure “Two Factor Authentication” again.Please follow below steps to reset “Two Factor configuration” for staff account.
Step[1]: Login C1 portal (one.comodo.com) using your regular account admin credentials
Step[2]: Click 'Staff Management ’ button in the top . Now click ‘Staff’ button from the drop down option available.
Step[3]: To reset “Two Factor Authentication” settings,
1. Select Staff account.
2. Click " Reset Two-Factor Authentication" button in the top.
3. Click "OK" button in the immediate popup window to confirm reset.
4. Alert window appears after successful reset.
Step[4]: Two-Factor Authentication window will appears to configure again. Click "CONFIGURE MY AUTHENTICATOR’ button and proceed further as explained earlier.
I’m eager to test the new two-factor authentication, and thank you for the detailed step by step. However, none of the screenshots will display. I’ve tried it on a couple of different computers and different browsers. Apparently there is something wrong with all the image links. Any chance of fixing these? I want to be careful in setting this up, and need the screenshots to make sure I’m doing it correctly.