Management help files
      Back to home
      1. OOONA Manager & QA
      2. Management help files

      Activating 2-factor authentication

      Sections in this article:

      What is 2-factor authentication?

      2FA or 2-factor authentication is a security measure mainly used to log into systems in a secure way.

      The user first logs into the system with their username and password and then they get a second verification request (SMS, Email, or Google authenticator) which provides the user with a code that they need to enter.

      Authentication manners

      Please note that activating 2-factor authentication from Administrator > Web Administrator > Configuration > Security, as explained in the Activating 2-factor authentication | System Administrator Initial activation of 2FA in OOONA Manager section, it will activate it for all users in the system. To change the authentication manner for individual users, follow the steps bellow.

      The system has a default authentication manner set by the Admin, but each user can set their preferred default authentication manner.

      From: My menu > Resource information > Default authentication manner

      • Email

      • Google Authenticator (requires initial setup by the user)

      • SMS via Twilio (requires having a valid mobile number in the system)

      When the authentication manner is set to “Google authenticator”, and the initial setup wasn’t done by the user yet, on the first login the user will change the authentication manner to Email so they can log in to OOONA Manager and then they can perform the initial setup of their Google authenticator.

      1-Nov-06-2024-12-11-30-4590-PM

      The Authentication manner can also be changed by the user on every login without presetting a user default

      Email authentication manner

      This authentication manner is the system default.

      Initial setup by the user

      Steps to change the default authentication to Email verification:

      From: My menu > Resource information

      1. Select “Email” in the “Default authenticator” field (2)

      2. Make sure the login email is set correctly (3). The authentication email will be sent to this email.

      3. Optional: To ensure the data was entered correctly, use the “Test authentication manner” button (4).

      2-Nov-06-2024-12-11-43-1650-PM

       Log in with Email authentication

      When logging in, after entering the Username and password, the 2FA page will prompt and the verification email will be sent to the Login email of the user. 

      3-Nov-06-2024-12-11-53-6622-PM
      4-Nov-06-2024-12-12-03-2249-PM
      The verification code received in the mail should be entered to gain access to the system (fig 1)

      In case of issues, another authentication manner can be selected upon login for this login attempt.

      5-Nov-06-2024-12-12-13-6767-PM

      Google Authenticator for mobile

      Initial setup by the user

      Steps to change the default authentication to Google Authenticator for mobile.

      First, the OOONA user must be linked to a Mobile’s Google Authenticator.

      From: My menu > Resource information

      1. Select “Google Authenticator” in the “Default authenticator” field (fig 1)

      2. Click “Generate google authenticator info” to show your unique QR code (fig 2)

      6-Nov-06-2024-12-12-25-9072-PM

      3. Download the Google Authenticator app to your phone

      Google Authenticator for Android

      ‎Google Authenticator for IOS

      4. Open the Google Authenticator app on your phone

      5. Click “Scan QR code” and scan the QR code received in step 2

      If scanning is not available to you, you can perform the initial setup using the number code received in step 2

       7-Nov-06-2024-12-12-37-0701-PM

      Log in with the Google Authenticator app

      1. Open the Google authentication app on your phone to show your code for this login: 

      8-Nov-06-2024-12-12-47-6898-PM

      2. Log in to OOONA Manager using your username and password: 

      9-Nov-06-2024-12-12-56-7173-PM

      3. The 2FA page will prompt.

      4. Enter the code received on your phone (fig 1) 

      10-Nov-06-2024-12-13-04-0146-PM

      In case of issues, another authentication manner can be selected upon login for this login attempt

      Google Authenticator for browser

      Initial setup by the user

      Steps to change the default authentication to Google Authenticator for mobile

      First, the OOONA user must be linked to a browser’s Google Authenticator

      1. Add the Google Authenticator add-on to your browser: Authenticator - Chrome Web Store

      2. Pin the Authenticator add-on for easy access

      3. Navigate to your Resource info page: My menu > Resource information

      4. Select “Google authenticator” in the “Default authenticator” field (fig 1)

      5. Click “Generate google authenticator” info (fig 2)

      6. Click the pinned authenticator icon (fig 3)

      7. Click “scan QR code” (fig 4)

      8. Scan by dragging with the mouse over your Google authenticator QR code (fig 5) 

      11-Nov-06-2024-12-13-17-4049-PM

      Log in with a Browser’s Google Authenticator

      1. Log in to OOONA Manager using your username and password 

      12-Nov-06-2024-12-13-31-7965-PM

      2. Click the pinned Google authenticator icon (fig 1)

      3. Click the code to copy it (fig 2)

      4. Paste the code (fig 3) 

      13-Nov-06-2024-12-13-42-4851-PM

      In case of issues, another authentication manner can be selected upon login for this login attempt

      SMS (Twilio)

      Initial setup by the user

      In order to use the SMS Twilio authentication method, the user needs to have a valid phone number in their resource profile.

      1. Go to My menu > Resource information

      2. Add a valid mobile phone number to the Mobile, Phone or Home phone fields

      3. Select “Sms using Twilio” as the default authentication manner.

      4. (Optional) Click on “Test authentication manner” to confirm the code is received. 

      14-Nov-06-2024-12-13-52-5084-PM

      If multiple phone numbers are provided, the system will check the fields in the following order:

      Mobile > Phone > Home phone

      Log in with SMS authentication

      When logging in, after entering the Username and password, the 2FA page will prompt and the verification code will be sent to the phone number of the user via SMS.

      If not received, the code can be resent using the “Re-send code” button, but this action is limited to 1 SMS per minute, for a maximum of 5 SMS in an hour. 

       A different authentication method can be selected at any moment from the “Verification method” field.
      15-Nov-06-2024-12-14-02-0798-PM

      System Administrator- Initial activation of 2FA in OOONA Manager

      Activating 2-factor authentication

      2-factor authentication is activated at a system level by default (fig 4), and can only be turned off by OOONA users.

      To change the authentication manner follow these steps:

      From: Administrator > Web Administrator > Configuration > Security

      1. Select the default authentication manner (fig 5):

        1. Email

        2. SMS (Twilio)

        3. Google Authenticator (requires initial setup by the user)

      All users can independently change the authentication manner to their preferred one out of the three available methods.

      They can set a user default, or manually select the authentication manner upon every login

      1-Nov-06-2024-12-35-09-2778-PM

      When the authentication manner is set to “Google authenticator”, and the initial setup wasn’t done by the user yet, on the first login the user will change the authentication manner to Email so they can log in to OOONA Manager and then they can perform the initial setup of their Google authenticator.

      2-Nov-06-2024-12-35-20-2473-PM

      2-factor authentication for Subcontractor links

      2-factor authentication for Subcontractor is activated at a system level by default, and can only be turned off by OOONA users. 
      All Subcontractor links will require 2-factor authentication when the subcontractors open them.

      3-Nov-06-2024-12-38-02-7806-PM

      Note that 2-factor authentication for Subcontractor links will automatically send the verification code to the subcontractor email. It does not allow choosing any other authentication method.

      4-Nov-06-2024-12-38-15-3573-PM

      Additional authentication methods

      If additional security is required, or your company already has an established authentication method, these can also be used to log in to the OOONA Manager system.

      Additional authentication methods can be configured from Administrator > Web administrator > Configuration > Security

      5-Nov-06-2024-12-40-10-7570-PM
      After selecting an alternative authentication method, the corresponding fields to populate will become available: 
      6-Nov-06-2024-12-40-24-9905-PM

      For security reasons, this configuration by itself will not enable the selected authentication method, as it also requires configuration to be done by the OOONA team.

      If this configuration is only partially done, the system will fall back to the standard login page.