Difference between revisions of "Two-factor authentication"

From 1Archive help
Jump to: navigation, search
(FAQ)
 
(One intermediate revision by the same user not shown)
Line 1: Line 1:
 
As of February 2019 we updated the way of logging in into the 1Archive environments. We added an extra security level in addition to your username and password, which means you will have to enter a unique code every time you log in.<br/>
 
As of February 2019 we updated the way of logging in into the 1Archive environments. We added an extra security level in addition to your username and password, which means you will have to enter a unique code every time you log in.<br/>
 +
<br/>
 +
We believe that passwords, as a standalone method of signing into a website, are not sufficiently secure for financial services companies such as UnifiedPost. Two-factor authentication is designed to prevent any unauthorised access to your account. Many people use the same password on multiple services, and so if a person's password is compromised by a malicious hacker, that person could be in danger of having other web services they use compromised. UnifiedPost, as a financial institution, cannot allow this type of security vulnerability. Two-factor authentication is required at all times for your security and safety of your data.<br/>
 +
<br/>
  
 
==Setting up your user account==
 
==Setting up your user account==
Line 37: Line 40:
 
# Do you have multiple accounts on our login system? It could be that you used the wrong account for trying to log in, click the "here" link in the message to try it with another user.
 
# Do you have multiple accounts on our login system? It could be that you used the wrong account for trying to log in, click the "here" link in the message to try it with another user.
 
# You created an account on the login system, but you don't have any access to the environment you're trying to login to. If this is the case, contact our support.
 
# You created an account on the login system, but you don't have any access to the environment you're trying to login to. If this is the case, contact our support.
<br/>[[image:keycloak-user-not-linked.png|400px|link=]]
+
<br/>[[image:keycloak-user-not-linked.png|400px|link=]]<br/>
 +
<br/>
 +
 
 +
===I don't have a mobile phone===
 +
When you don't have access to a mobile phone for generating the two-factor authentication codes, it's also possible to use a desktop app. Install Authy [https://authy.com/download/ here]

Latest revision as of 10:05, 20 February 2019

As of February 2019 we updated the way of logging in into the 1Archive environments. We added an extra security level in addition to your username and password, which means you will have to enter a unique code every time you log in.

We believe that passwords, as a standalone method of signing into a website, are not sufficiently secure for financial services companies such as UnifiedPost. Two-factor authentication is designed to prevent any unauthorised access to your account. Many people use the same password on multiple services, and so if a person's password is compromised by a malicious hacker, that person could be in danger of having other web services they use compromised. UnifiedPost, as a financial institution, cannot allow this type of security vulnerability. Two-factor authentication is required at all times for your security and safety of your data.

1 Setting up your user account


Warning.png If you don't perform these steps, you won't be able to log in into our environments!

Info.png You should have received an email from onea-support@unifiedpost.com which asks you to update your Onea account. If you didn't receive this email, please contact us.

You will find a link in the email you received. Clicking this link will redirect you to our login system to setup your user account. Click the "Click here to proceed" button.

Keycloak-mail-link.png

The first thing you need to do is setting up an authentication code on your mobile phone. This application will generate the unique code you will need to enter every time you log in.
Download the app needed here:

App-store-icon.png Play-store-icon.png

Keycloak-otp.png

Next, you will need to accept our terms and conditions. Read them carefully and click the "Accept" button at the bottom of the page.

Keycloak-terms-and-conditions.png

In the next screen you need to choose a password.


Info.png Your password should be at least 8 characters long and it cannot not be the same as your username.


Keycloak-choose-password.png

After this step, your account is completely set up and you're able to login into the environment you want.

2 Logging in into your account

Go to the environment you want to work in. You will be automatically redirected to our login system where you can login with the user you previously set up (see above). Enter your email and password and click the "Login" button.

Keycloak-login-screen.png

The system will now ask you for your unique code. This code is generated by the authenticator app you installed when setting up your account (see above). Open that application on your mobile phone, enter the generated code here and click the "Login" button.

Keycloak-one-time-code.png


Info.png If it's the first time you log in with this account, you will need to give 1Archive access to your user account. Click "Yes" when asked if you want to grant the given access privileges.

Keycloak-grant-permissions.png

3 FAQ

3.1 I can't log in

If you get an error message saying "There is no user with email address your.name@company.com, click here to try with another user", this could mean several things:

  1. Do you have multiple accounts on our login system? It could be that you used the wrong account for trying to log in, click the "here" link in the message to try it with another user.
  2. You created an account on the login system, but you don't have any access to the environment you're trying to login to. If this is the case, contact our support.


Keycloak-user-not-linked.png

3.2 I don't have a mobile phone

When you don't have access to a mobile phone for generating the two-factor authentication codes, it's also possible to use a desktop app. Install Authy here