What is Two Factor Authentication?

Two Factor Authentication, or 2FA, is an extra layer of protection used to ensure the security of online accounts beyond just a username and password.  Many companies and organizations employ 2FA to increase the security of accounts on their systems and reduce abuse, fraud, and loss.  Two Factor Authentication ensures that only the person that owns the account can provide access to the account being protected by using authenticator apps, emailed security codes, and hardware-based physical security keys.


How do I enable Two Factor Authentication for my website?

If we are building a website for you, this is something we will cover during the build process.  However, if you already have a website or are transferring a website to us to manage and host, you'll need to request that 2FA be enabled.  You can place a request here or by emailing us directly at help@deepwaterpixel.com


How do I use Two Factor Authentication?

Using Two Factor Authentication is very simple.  When you login to your website, after you submit your username and password, you will be shown an interface that will request your second factor authentication.  


There are a few methods of providing that authentication.  The first is a hardware-based physical key, also referred to as a U2F key.  Most security keys are USB-based, though some will offer NFC or Bluetooth options.  Companies like Yubico, Thetis, and Google produce U2F keys for purchase through sites like Amazon.  A physical key has several benefits, like not having to mess with numbers, being portable, and are just plain cool.


Other methods of Two Factor Authentication verification are typically handled using a secret phrase, code, or number to validate that you have permission to login to the account in question.  Common delivery methods for these validations is SMS text messaging, email, and authenticator apps like Google Authenticator or Authy.  When you use this method, you will be sent a code, phrase, or number that must be input on the login form for the site you're trying to login to.


When you have a hardware-based physical key set as your primary, you will be asked to insert the key into the computer you are using.  If you have a device that does not support your physical key, you can use fallback options like an authenticator app or email to complete the second factor authentication step.  When your physical key is detected and activated, or you provide the right code on the login screen, you will be provided access to your website.


What does Two Factor Authentication Look like?

Two Factor Authentication takes place during the login process.  When you have an account with 2FA enabled, you'll see something like the examples below.


Using Email Verification

Using Authenticator App Verification


Using Physical Key Verification