MFA authentication provides an additional layer of protection on top of the username and password. If MFA–based login authentication is enabled, you will need to enter a verification code after your username and password are authenticated. Together, these factors make your account and resources more secure.
MFA devices can be based on hardware or software. The cloud system supports only virtual MFA devices.
A virtual MFA device is an application that generates 6-digit codes in compliance with the TOTP standard. Such applications can run on mobile devices (including smartphones) and are easy to use.
For more information, see MFA Authentication and Virtual MFA Device.
Prerequisites
You have installed an MFA application (for example, Google Authenticator) on your smartphone.
Procedure
- Go to the Security Settings page.
- Click the Critical Operations tab, and click Bind in the Virtual MFA Device row.Figure 1 Binding a virtual MFA device
- Add a virtual MFA device to your MFA application.Figure 2 Adding a virtual MFA device
- Bind a virtual MFA device to your account by scanning the QR code or entering the secret key.
- Scanning the QR code
Open the MFA application on your mobile phone, select Scan QR code. Click Show QR code in step 1 and scan the QR code. Then, the MFA application automatically adds the virtual MFA device.
- Entering the secret key
Open the MFA application on your mobile phone, and enter the secret key.
TOTP-based virtual MFA devices can only be manually added. You are advised to enable automatic time setting on your mobile device.
- Scanning the QR code
- View the dynamic verification codes on the home page of the MFA application. The code is automatically updated every 30 seconds.
- On the Bind Virtual MFA Device page, enter two consecutive verification codes and click OK.