Authentication
You can use the Authentication function to:
- Enable or disable the "Password Lock". Change the password of the "Password Lock".
- Enable or disable the "Two-Factor Authentication". Add or remove one or more device(s) registered for Two-Factor Authentication (2FA).
- Re-pair with Authenticator.
- View details of the last succeessful login for "Password Lock" and Two-Factor Authentication (2FA).
!
- If both the "Password Lock" and Two-Factor Authentication are enabled, users will be prompted to enter the "Password Lock" first before the Two-Factor Authentication (2FA).
- For Two-Factor Authentication (2FA), you can register your mobile device on both %mobile_app_name% and a third-party TOTP Authenticator (e.g. Google Authenticator, Microsoft Authenticator, and LastPass Authenticator).
Password Lock
Field |
Description |
Current Password |
The current password.
|
New Password |
The new password that you want to change.
|
Reenter Password |
Re-Enter the new password for confirmation.
|
Two-Factor Authentication (2FA)
Field |
Description |
Registered Mobile Device(s) |
List of mobile device(s) paired with the backup account.
|
Requirements
These are the requirements for using Two-Factor Authentication (2FA):
!
CloudBacko Home does not support Two-Factor Authentication (2FA).
- Firewall Settings - Make sure to configure the firewall to allow outbound connection to pns.cloudbacko.com via port 80 and 443. Failure to do this will prevent you from using Push Notification feature.
- For Android device, Android version must be Android 8 or above. For Apple device, iOS version must be 12.0 or above.
- The Two-Factor Authentication feature must be enabled on %edition_name%.
- A supported mobile device with %mobile_app_name% app and/or a third-party apps must be installed.
- The %mobile_app_name% app and/or a third-party authenticator apps must be registered with %edition_name%.
- %edition_name% must be connected to the internet.
- Mobile device must have valid mobile service and able to receive SMS notifications.
- Mobile device must have a functioning camera for scanning QR code to register 2FA.
- To use push notification for Two-Factor Authentication with the %mobile_app_name% app the mobile device must have an internet connection.
- Ensure to Allow Notification on the %mobile_app_name% app for your mobile devices.
Last Successful Login
Field |
Description |
Time |
Displays the Date, Time, and Timezone of the last login when either "Password Lock" or "Two-Factor Authentication (2FA)" is used.
|
Mobile Device |
Displays the mobile device name used to login to %mobile_app_name% if Two-Factor Authentication (2FA) is enabled.
|
Enable the password lock:
- Slide the switch to right hand side to turn on the password lock.
- Enter the new password.
- Reenter the password.
Change the password:
- Click on the [Change Password] to change the password.
- Enter the current password, click [Next].
- Enter the new password.
- Reenter the password, click [OK]
Disable the password lock:
- Slide the switch to left hand side to turn off the password lock.
- Enter the password.
- Click the [Save] button.
Enable the Two-Factor Authentication:
- Slide the switch to right hand side to turn on the Two-Factor Authentication.
- Add the mobile device used for authentication.
- Click the [Save] button.
Add the mobile device used for authentication
Note: The %mobile_app_name% or a third-party TOTP Authenticator is needed for 2FA.
To add a new mobile device:
- Click the [Add] button.
- Download the CloudBacko app from Google Play Store for an Android device and from App Store for an iOS device. Click the [Next] button to continue.
- CloudBacko app can be configured to support two Two-Factor Authentication modes:
- Push Notification and TOTP (default mode)
- Scan the displayed QR code using the CloudBacko app.
- After succeessful scan of the QR code, CloudBacko app is registered for Push Notification and TOTP.
- In the CloudBacko app, go to 2FA then enter the phone number for account recovery. Tap Enter recovery phone number.
- Select your country code and enter your phone number then tap Send SMS verification code.
- Enter the verification code sent to your mobile device.
- Successfully verified the phone number for account recovery.
- TOTP only
- Click the Not able to scan QR code? Click here to pair with TOTP secret key link.
- In the CloudBacko app, go to 2FA. Tap the Not able to scan QR code? link.
- To see the secret key, click the Show Secret Key link to display the 16-digit secret key. And enter the display name.
- Enter the Username and Secret Key from CloudBacko Pro or Lite then tap Connect.
- Enter the one-time passcode from the CloudBacko app.
- Once the registration is successful, the following screen will be displayed. You have now registered your device for two-factor authentication then click OK.
- If using a third-party authenticator,
- Click the Not able to scan QR code? Click here to pair with TOTP secret key link.
- In the third-party authenticator, go to ,2FA. Tap the Not able to scan QR code? link.
- To see the secret key, click the Show Secret Key link to display the 16-digit secret key. And enter the display name.
- Enter the Username and Secret Key from CloudBacko Pro or Lite then tap Connect.
- Enter the one-time passcode from the third-party authenticator.
- Once the registration is successful, the following screen will be displayed. You have now registered your device for two-factor authentication then click OK.
- Click the [Save] button.
Re-pair with Authenticator
To re-pair with authenticator:
- Click Re-pair with authenticator.
- In the CloudBacko app, go to 2FA then tap Re-pair with backup user account.
- Scan the QR code to re-pair with authenticator.
- QR Code is detected, tap OK to proceed.
- The migrated 2FA account has been successfully re-paired.
- The original device will be changed by the replacement device.
Delete a registered mobile device
To delete a registered mobile device:
- Click the [X] button on the right side of the mobile device that you want to delete.
- Click [Yes] in the pop up message that will be displayed to delete the mobile device.
- Click [Save] to save the changes and exit.
Disable the Two-Factor Authentication:
- Slide the switch to left hand side to turn off the two-factor authentication.
- Click the [Save] button.
!
Note: Sliding the switch to left hand side will only turn off the two-factor authentication but it will not automatically delete the registered mobile device(s) for Two-Factor Authentication. If you need to delete the registered mobile device(s), this must be done manually first before disabling Two-Factor Authentication.