Two Factor Authentication

What is two factor authentication

Two factor authentication is where a resource such as a website or application requires two separate pieces of information before allowing access to the resource.

This can be handled in a number of ways but the most common is by using either an Authentication app (usually on a phone) to generate a one time code or by sending an SMS message to your phone with a one time code to use to log on.

There are a number of phone apps that can be used for two factor authentication. Examples are:

Google Authenticator
Microsoft Authenticator

Two factor authentication for Paua

In Paua we use a one time code that can be generated by an authenticator app.

How to enable two factor authentication for Paua

On your Phone

Download an authentication app from the Google Play Store or the Apple App Store. If you already have a different authenticator app installed and you want to use this different app then you will need to modify these instructions to fit your app.

In Paua

Login as normal and navigate to the Two Factor Authentication page from the main menu. At the top of the page is a button Enable two factor authentication

Click this button and you will be presented with a page containing a QR Code

On your Phone

Open your authenticaion app and create a new account There is a large button Scan QR Code Press this button and the camera will open allowing you to scan the QR code on the Paua page. Once the code has been scanned you should have a new entry in the app for Paua and there will be a 6 digit code on the screen that refreshes every 30 seconds.

In Paua

Enter your current password in top box on the right of the screen and then enter the 6 digit code from the app and click Confirm

Two factor authentication should then be enabled.

Logging on with two factor authentication in Paua

When you have 2FA enabled you start off by entering your Organisation/Username and Password as normal.

You will then be presented with a page that asks you for the 6 digit code from your chosen authentication app.

Open the app on your phone and select the entry for Paua.

Type the 6 digit code from the app into the field in Paua and click the Login button.

Resetting two factor authentication in Paua - Admin users only

In some instances you may want to reset 2FA in Paua for a user.

For example if they get a new phone it may be simpler to reset 2FA and then re-enable with the new phone.

To reset 2FA simply go to the User profile in the Admin menu and click on the user you want to edit.

Click on the button Reset two factor authentication

Click this button and you will reset the 2FA on Paua for that user.

To avoid confusion they should go into the app on their phone and remove the old Paua entry before creating a new one.