How to Enable Two-step Verification for Access to the Platform and the User Portal

In this tutorial, you will find out how to enable two-step verification for accessing the platform and the user portal. There are just three simple steps: 1) Access the user profile settings, 2) activate two-step verification on the platform and 3) Register and configure the mobile app (Google Authenticator or Microsoft Authenticator, depending on your choice)

Two-step verification is an extra security measure whereby the user requires a password and a special code to access a service. This code is usually sent by SMS or through a mobile app. Since Jotelulu’s services are likely to be used for critical or sensitive information and processes, users have the option to enable two-step verification using the Google Authenticator app.

Image 1. Two-step verification to access Jotelulu

How to activate two-step verification to access the administration panel?

Before you begin:

To successfully complete this tutorial and enable two-step verification, you will need:

To be registered on the platform, have signed in and have a username to work with.
A smartphone and to have downloaded the Google Authenticator app or Microsoft Authenticator.
If you wish to enable two-step verification for the user portal, you will need to have previously added a service that requires the use of the portal (e.g. Remote Desktop or File Storage).

Step 1. Go to the profile settings on the platform

Starting from the initial dashboard, go to the Organisation section (1) using the top menu.

Step 1. Go to the Organisation section to enable two-step verification

In the Organisation section, click on the User subsection (2) located in the menu on the left.

Step 1. Go to the User subsection to enable two-step verification

Select a user, click on the three dots on the right-hand side of the table and click on “Edit” (3).

Step 1. Select the user that you want to enable two-step verification for

Step 2. Activate two-step verification on the platform

Next, go straight to the Profile subsection, where you will find the user’s name, role and telephone number. If you scroll down a little, you will also see options to manage their password and two-step verification. Tick the checkbox for two-step verification (4) for the Administration Panel and click “Save” (5). Although not shown in the image below, it is also possible to activate two-step verification for the user portal (the checkbox below).

Note: the fields “Generate new key” and “Generate new single-use codes” shown in the image below will not appear if it is the first time that two-step verification is activated. See points 10 and 11 below.

Step 2. Activate two-step verification for the selected user

Once the changes have been saved, the platform will confirm that the changes to the user have been successfully applied.

Step 2. Wait for the platform to confirm that changes have been applied successfully (two-step verification enabled)

Step 3. Registering and configuring the mobile app

The next time that the user accesses the platform (sign in), they will need to have their smartphone to hand with the Google Authenticator app open, or “Microsoft Authenticator” in case of having chosen this other option. When they attempt to sign in, a message will appear displaying various codes:

Step 3. Read the message that appears when signing into the platform

The message will display two types of code, either of which can be used to register/configure the mobile app:

Alphanumeric password (6.1). Register this key in the Google Authenticator app or in Microsoft Authenticator.
QR Code (6.2). Take a capture of the QR code using the Google Authenticator app or in Microsoft Authenticator.

Step 3. Choose one of the two codes to configure the Google Authenticator app

Step 3. Choose one of the two codes to configure the Authenticator app

Once you have completed one of these processes, you will receive a verification code via Google Authenticator (7) or Microsoft Authenticator each time you sign into the platform (8).

Step 3. Consult the Google Authenticator app for the code to access the platform

Step 3. Consult the Authenticator app for the code to access the platform

As well as these two codes, the message will also display a number of single-use codes (9) which can be used when it is not possible to consult the codegenerated by the Google Authenticator app. These codes can be used once only.

Step 3. Remember that you also have codes for moments when you cannot consult the Google Authenticator app

Step 3. Remember that you also have codes for moments when you cannot consult the Authenticator app

Note: Once two-step verification has been activated, the user profile in the Organisation section will change. Now, the options to reconfigure the Google Authenticator app (10), generate a new passkey or generate new single-use codes (11) will be enabled. The process would be the same for Microsoft Authenticator.

Step 3. Once two-step verification has been activated, the user profile will have new fields enabled to generate new codes

Summary

Critical services often if not always need additional security measures, and two-step verification is a way of increasing security when providing access to services and processes. If you would like more information about the levels of security at Jotelulu, please take a look at the section entitled: Infrastructure and Security.

We hope that this tutorial has been useful for you. If you have any questions or need more information, please write to us at platform@jotelulu.com or call us on +351 211 246 260 and we will be happy to help. Thank you.