Hello there!

Need Help? We are right here!
support
miniOrange Email Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

Two factor Authentication (2FA)


miniOrange Two Factor Authentication products ensure right set of eyes have access to your sensitive information sitting on the cloud or on-premise.

Free Trial IDP Setup Guides App Integrations

What is Two factor Authentication (2FA)?

Two-Factor Authentication (2FA) is the process of the authentication in which you have to provide two factors to gain the access. First Factor is the one that you know username and password and Second factor is what you might have as unique like a phone (For OTP) or Fingerprint. This additional layer prevents the unauthorized person from accessing the resources even if they know your username and password. miniOrange provides 15+ authentication methods and solutions for various use cases. An attacker can usually breach password-based security systems and steal corporate data, personal, customer data, including users personal information & payment details. Two factor Authentication(2FA) can provide more security, depending on how it is implemented, and various verification methods can also provide more secure access.

Two factor Authentication(2FA) Features

Passwordless Login using Username

Allows users to log in using Username and OTP thus, preventing the need to enter Password.

VPN/Windows Solution

Provides Two factor Authentication(2FA) solutions for Open VPN, Palo Alto, Cisco Pulse, Windows , RDS and etc.


Remember Device

User would get an option to remember the personal device and users can directly login with same the saved device where 2 Factor is not required.


User Self Enrollment

It offers inline registration of users so you can simply activate and configure the plugin and you are all set.


IP Restriction

Admin can restrict users to login from specific IPs. It will provide additional security to the accounts.


Supports All Phones

All types of phones are supported Smart Phones (iPhone, Android, BlackBerry), Basic Phones, Landlines, etc.


Popular Integration








Apps supported by miniOrange

two factor authentication (2FA) miniOrange authenticator app

miniOrange
Authenticator App
two factor authentication (2FA) google authenticator app

Google
Authenticator App
two factor authentication (2FA) authy authenticator app

Authy 2-Factor
Authentication App

BENEFITS



Enhanced Security

Two Factor authentication(2FA) service that verifies you are who you say you are before letting you move forward.

Instant ready solution

Instant ready Solution for Google Apps, Salesforce and other Cloud, Web, VPN Solutions.

Risk-based Access

It helps you in remembering the device, in which case you will not be prompted for the 2FA if you login from the restricted device again.

Lower Security management Cost

Our Cloud based security model ensures that you are getting the best security possible without having to worry about where and how you host/deploy it.


Two Factor Authentication(2FA) methods provided by miniOrange






OTP OVER SMS

In this method, user receives an sms containing a 6-8 numeric key which he needs to enter to authenticate himself.

OUT OF BAND SMS

In this method, user receives an sms with link which he needs to click to accept|deny the
transaction.

GOOGLE AUTHENTICATOR

In this method, user needs to enter 6 digit passcode generated by Google Authenticator app.


MOBILE AUTHENTICATION

In this method, user needs to scan the barcode from his mobile using the Authenticator App.

PUSH NOTIFICATION

In this method, user receives a notification on his mobile which he needs to ACCEPT | DENY.

SOFT TOKEN

In this method, user needs to enter the 6-8 numeric key from his mobile.


OTP OVER EMAIL

In this method, user receives an email containing a 6-8 digit numeric key which he needs to enter.

OUT OF BAND EMAIL

In this method, user receives an email with link which he needs to click to accept|deny the transaction.

DISPLAY HARDWARE TOKEN

In this method, user needs to authenticate himself using his display hardware token.


YUBIKEY HARDWARE TOKEN

In this method, user needs to connect a usb like token into his computer which generates an alphabetic key.

OTP OVER SMS AND EMAIL

In this method, user receives an sms and an email containing a numeric key which he needs to enter.

SECURITY QUESTIONS

In this method, user answers some knowledge based security questions which are only known to him to authenticate himself.


PHONE VERIFICATION

In this method, user receives a voice call telling a 4-8 digit numeric key which he needs to enter to authenticate himself.

VOICE VERIFICATION

In this method, user receives a notification on his mobile app to authenticate himself through his voice.

MOBILE AUTHENTICATION

In this method, user needs to scan the barcode from his mobile using the Authenticator App.

SOFT TOKEN

In this method, user needs to enter the 6-8 numeric key from his mobile.

GOOGLE AUTHENTICATOR

In this method, user needs to enter 6 digit passcode generated by Google Authenticator app.


VOICE VERIFICATION

In this method, user receives a notification on his mobile app to authenticate himself through his voice.

PUSH NOTIFICATION

In this method, user receives a notification on his mobile which he needs to ACCEPT | DENY.


OTP OVER SMS

In this method, user receives an sms containing a 6-8 numeric key which he needs to enter to authenticate himself.

OUT OF BAND SMS

In this method, user receives an sms with link which he needs to click to accept|deny the
transaction.

PHONE VERIFICATION

In this method, user receives a voice call telling a 4-8 digit numeric key which he needs to enter to authenticate himself.

<

miniOrange provides easy to use Two factor authentication (2FA) for secure login to your site. It replaces insecure passwords and adds a second layer of security to your site. 1-click download, 1-click activation. Easy to setup for any developer or user.


What if your phone gets discharged?

In this case, you can click on Forget your phone link when prompted for any two factor authentication method.You will be prompted for a security question and/or OTP to your alternate email you have registered with us. Answer that question and/or enter the otp and you can login to your Gmail account.

What if your phone is lost or stolen?

In this case, call or email your administrator and your administrator can give you access through his admin console. He can enable Forgot my phone option temporarily.If you already have another phone, then you can ask the administrator to reset your phone number.

What if you upgraded your phone?

If you upgrade your phone, all your configured account's data will be wiped out then re-configure your account using configure second factor method.

Two factor Authentication(2FA) Setup Options for Admins

  • 1

    How to Configure Two factor Authentication(2FA)

  • 2

    How to perform a Quick Test

  • 3

    Customize SMS Gateway

  • 4

    Customize OTP SMS Template

  • 5

    Configure Email Gateway

  • 6

    Customize Email Template

  • 7

    Configure Alternate Login method

  • 8

    Select Two factor Authentication(2FA) methods for users




    • Configure Two Factor Authentication(2FA) methods


    To configure Two Factor Authentication(2FA) Method refer to the steps given below:



    How to perform a Quick Test


    To perform quicktest of the authentication methods provided by miniOrange, navigate through 2-Factor Authentication -> Configure 2FA Tab in Admin Console and select Want to try it first? Tab from right corner. Refer the steps that follow next:


    two factor authentication (2FA) quick test

    OTP Over SMS

    • Select OTP OVER SMS method.
    • Add phone number for which OTP over SMS quicktest is to be tested.
    • Click on perform test.
    • Enter the OTP received on the phone and click on Validate OTP to verify OTP.

    OTP Over EMAIL

    • Select OTP OVER EMAIL method.
    • Add email address for which OTP over EMAIL quicktest is to be tested.
    • Click on perform test.
    • Enter the OTP received on the email address specified and click on Validate OTP to verify OTP.

    OTP Over SMS and EMAIL

    • Select OTP OVER SMS AND EMAIL method.
    • Add phone number and email address to receive OTP.
    • Click on perform test.
    • Enter the OTP received on the email address / on phone number specified and click on Validate OTP to verify OTP.

    Out of BAND SMS

    • Select OUT OF BAND SMS method.
    • Add phone number in the Phone field.
    • You will receive a message with Accept or Deny link.
    • Click on Accept or Deny the link to perform test.

    Out of BAND EMAIL

    • Select OUT OF BAND EMAIL method.
    • Add email address in the Email field.
    • You will receive an email on the Email specified in above with Accept or Deny link.
    • Click on Accept or Deny the link to perform test.

    Soft Token

    • Select SOFT TOKEN method.
    • Open the Google Authenticator app on your phone, and click on Soft Token tab.
    • Enter the Soft Token in the OTP field to perform test.

    Push Notification

    • Select PUSH NOTIFICATION method.
    • You will receive a push notification on the configured phone.
    • Click on Accept/Deny button to do the quick test.

    Security Questions

    • Select SECURITY QUESTIONS method.
    • Enter the answers of the configured questions.
    • Click on Verify Answers to test.

    Display Hardware Token

    • Select HARDWARE TOKEN method.
    • Plug-in the configured Hardware Token and press the only button on the token. Cursor should be in the text box, while doing this.
    • On pressing the button OTP field will be filled with a large number, in this way you can test this authentication method.

    Phone Verification

    • Select PHONE VERIFICATION method.
    • Enter the phone number in Phone field and click on perform test.
    • You will receive a phone call for four digit One Time Password.
    • Enter this OTP in OTP field and click on Validate OTP to test.

    Mobile Athentication


    • Select MOBILE AUTHENTICATION method.
    • Scan the QR Code to test this authentication method.

    Voice Authentication


    • Select VOICE AUTHENTICATION method.
    • Scan the QR Code to test this authentication method.

    Goggle Authentication

    • Select GOOGLE AUTHENTICATION method.
    • Open Google Authenticator app in your phone
    • To register your device scan the QR code through Google Authenticator app.
    • Enter the Passcode generated by Google Authenticator app and click on the SAVE button.

    YUBIKEY Hardware Token

    • Select YUBIKEY HARDWARE TOKEN method.
    • Insert your miniOrange Authenticator into a USB port.
    • Click on Enter Your OTP field, and touch the miniOrange Authenticator button.
    • Enter the otp in the field, click on Save to save the configuration.


    Customize SMS gateways


    You can customize SMS gateways in the following way:

    • Select Configure your SMS Gateway Configuration from 2-Factor Authentication tab.
    • Enter the SMS Gateway URL.
    • To test the SMS gateway enter a phone number, on which you want to receive OTP.
    • Enter the OTP Sent in SMS to verify and click on Validate button.
    • You can SAVE this configuration, over our default SMS configuration.
    two factor authentication (2FA) sms configuration


    Customize OTP SMS Template


    You can customize OTP SMS Template in the following way:

    • Select Customize OTP SMS Template from 2-Factor Authentication Tab.
    • Check the checkbox saying SET CUSTOMIZED SMS TEMPLATE.
    • Add phone number in the Phone field and click on Send SMS button.
    • You will receive a message with Accept or Deny link.
    • Click on Accept or Deny the link to perform test.
    two factor authentication (2FA) sms opt configuration


    Configure Email Gateway


    You can customize your SMTP Gateway in the following way:

    • Select Configure your EMAIL Gateway from Customization Tab.
    • Fill in the Required field under Primary SMTP Server Configuration.
    • To test the SMTP Server configuration, enter the email to test.
    • Now enter the OTP received on your email, you entered in the STEP1 field.
    • You can SAVE the configuration, over our default SMTP configuration.
    two factor authentication (2FA) email configuration

    Customize Email with LINK Template


    You can customize Email with LINK Template in the following way:

    • Select Customize Email your Template from Customization Tab.
    • Select the Email Template to Configure.
    • Select the radio button Set Customized Email Template to set the template.
    • Add Sender Name and Subject for email template.
    • Enter Accept and Deny Link URL which will be sent with an email.
      • two factor authentication (2FA) email template configuration

    • You can customize template content as follow :
      • two factor authentication (2FA) email template configuration



    Configure Alternate Login method (Forget Phone)


    If you forgot your phone, you can use alternate login method to authenticate yourself. You can configure Alternate Login methods in following way:

    • Select Configure Alternate Login Methods from 2-Factor Authentication Tab.
    • Check on the checkbox that says 'Enable Forgot phone'.
    • Select any method as your Alternate Login Method.
      1. Based on Alternate Email - If this option is chosen, the user will be sent a one time passcode to his alternate email address. You should pick that passcode and enter it when prompted to authenticate yourself.
      2. Based on KBA - In this option, the user will be prompted to answer some knowledge based questions or life questions. If answered correctly, the user will be able to authenticate himself.
      3. Based on Alternate Email and KBA - This option will prompt the user to enter a one time passcode sent to his alternate email followed by answering a knowledge based question in order to authenticate himself.
    • Click on SAVE button to save your configuration.
      • two factor authentication (2FA) forget phone


    Select Authentication methods for your Users


    You can choose Two Factor Authentication(2FA) methods for your endusers in the following way:

    • Select Configure 2FA for Users from 2-Factor Authentication Tab.
    • Select the Default Authentication method and Click on the Save Button.
    • Select the 2FA methods allowed to be shown to endusers and Click on the Save Button.
    • You can also Enable option for Skip Alternate Login Method (KBA) Configuration during Inline Registration.
    two factor authentication (2FA) email configuration



    View our Other featured Products: Cloud Identity Broker Service | Single Sign-On

    We offer Security Solutions of Single Sign-On, Two Factor Authentication, Fraud Prevention and much more.

    Please call us at +1978 658 9387 (US), +91 77966 99612 (India) or email us at info@xecurify.com