Introduction : Two-step Authentication

QMetry’s Two-step Authentication is a simple best practice that adds an extra layer of protection on top of your user name and password. With two-step authentication enabled, when a user signs in QMetry, they will be prompted for their user name and password (the first factor - what they know), as well as for an authentication code from their two-step authentication device (the second factor - what they have). Taken together, these multiple factors provide increased security for your QMetry user account.

You can enable two-step authentication for individual users in QMetry. There is no additional cost for enabling users with two-step authentication.

• Any users having QMetry authentication type can be enabled.

• Users authenticated via LDAP/SAML cannot enable two-step authentication.

Two-step Authentication Workflow

1. Users can enable two-step verification on their account.

2. While logging in they will be prompted for an authentication code after entering their QMetry credentials which are authenticated only after successful code verification.

Enable Two-step Authentication

• Users need to have create/update permissions for user module to enable/disable two-step verification on their own/others accounts.

Enabling two-step authentication requires an authentication application downloaded on your smartphone. Applications for your smartphone can be installed from the application store that is specific to your phone type. The following table lists some applications for different smartphone types.

After downloading the application, follow the below steps.

1. Login to QMetry with your credentials. Go to Customization > Users.

2. Filter by your user and click Edit. Ensure under user details that the authentication type is QMETRY.

Open

3. Go to Security tab > Two-step Verification > Enable.

Open

4. Scan the QR Code, and enter the verification codes to enable the two-step verification.

Once the two-step authentication is enabled, after signing in to QMetry with credentials, user will be prompted with a two-step verification code.

Filter Users with Two-step Verification

In the Users module (Customization > Users), you can apply MFA filters - Enabled or Not Enabled to filter the users on the basis of two-step verification setup.

Disable Two-step Authentication

For scenarios where an end user loses the authentication device or the authentication app OR simply wants to disable two-step authentication, below are the steps that should be followed.

Steps :

1. Login to QMetry with your credentials. Go to Customization > Users.

2. Filter by your user and click Edit.

3. Go to Security tab > Two-step Verification > Click the toggle to Disable.

4. Click Remove

Resync Verification details for Two-step Authentication

1. Login to QMetry with your credentials. Go to Customization > Users.

2. Filter by your user and click Edit.

3. Go to Security tab > Two-step Verification > Click the toggle to show remove/resync options.

4. Click Resync and enter verification codes from the authentication app on your phone to complete the resync.