Enabling Two-Factor Authentication in the Manage Section

Two-factor authentication may be enabled in the CAW Manage section. The CAW Manage section has only one login and password so there is only one device to set up.

1 Install an authenticator application on a smartphone, tablet, or computer. It will be used in a later step to capture a QR code generated by CyberAudit-Web.
2 Enable Two-Factor Authentication (2FA) in the Manage section. Log in to the manage section and go to Global Settings. Select the Login Security tab. In the Website Name field, enter a unique identifier for the Manage section on this site. This name will appear in the authenticators to differentiate it from other sites. At the bottom of the page click ENABLE 2FA.
3 Ensure the clock on the server is accurate otherwise setting up devices running an authenticator app may fail. The current server time is shown in the warning banner. Click CONTINUE when ready.
4 CyberAudit-Web generates 16 one-time passwords which may be used in the event an authenticator app is not available. Save these Backup Codes to a file and/or print them. Be sure they are stored in a secure location. After the codes are saved or printed, a CONTINUE button will appear. Click it to continue.
5 Use the authenticator app to scan the QR code or copy and paste the QR code contents into a desktop authenticator. Then enter the resulting 6-digit OTP into the input field. Click ENTER.
If the code is accepted, you will return to the Login Security page with the buttons appearing as below.

Hosting systems with multiple accounts must enable Advanced Security Features on the Hosting Options page for an account to use two-factor authentication.

Disabling and Re-Enabling Two-Factor Authentication

---

Two-factor authentication may be disabled for the manage section by clicking DISABLE 2FA in the Login Security page. When 2FA is disabled, the Website Name may be edited.
Enable Two-factor authentication again by clicking ENABLE 2FA.
Clicking RESTORE PREVIOUS DEVICE AND BACKUP CODES brings up a page for entering the TOTP authentication code.
Clicking CONTINUE goes to Step 4 above.

Generating New Backup Codes

---

New one-time passwords or Backup Codes may be generated if needed. To do so, click on the GENERATE NEW BACKUP CODES button.	As indicated in the warning, generating new codes overwrites and invalidates any of the previous codes.
New codes are presented for downloading or copying to the clipboard.

Setup a New Two-Factor Device

---

If the authenticator app will be moved to a new smartphone, tablet, or desktop device, click the SETUP NEW 2FA DEVICE button. As indicated in the warning, the previous device may no longer be used. Use the authenticator app to scan the QR code or copy and paste the QR code contents into a desktop authenticator. Then enter the resulting 6-digit OTP into the input field. Click ENTER. If the code is accepted, you will return to the Login Security page.

Additional Topics:
About Two-Factor Authentication in CyberAudit-Web
Enabling Two-Factor Authentication for an Account
Two Factor Authentication Account Options
Enabling Two Factor Authentication for an Administrator
Two-Factor Authentication Support Operations
The Two-Factor Authentication command line utility