Stobox Knowledge Base | V.3.0
Stobox Knowledge Base | V.3.0
🛡️

2FA Protection

What is 2FA protection?

2FA stands for "two-factor authentication." It is an extra layer of security used to ensure that people trying to gain access to an online account are who they say they are. First, a user will enter their username and password. Then, instead of immediately gaining access, they will be required to provide another piece of information.

2FA is essential to web security because it immediately neutralizes the risks associated with compromised passwords. If a password is hacked, guessed, or even phished, that's no longer enough to give an intruder access: without approval at the second factor, a password alone is useless.

Where do I receive the 2FA codes?

To receive the 2FA codes, you must use the Google Authenticator app on your mobile or the Authenticator extension in your browser.

They are separate tools to register the websites requiring an additional security level, 2FA.

How do I set up a 2FA account to receive 2FA codes?

Please see our guide for the easiest way to set it up on your desktop/laptop using a browser's extension. The process is mainly the same with the mobile app so we will add its nuance on the go.

📌
Despite browser extension being more comfortable, the app is considered even more secure.
1. Go to the Authenticator official website or Chrome Web Store. For mobile devices, use Google Play for Android and App Store for iOS devices.

2. Click the Add to Chrome button. For mobile apps, download and install them as any other mobile app.
Main page. Clicking the button redirects to Chrome Web Store (below)
Main page. Clicking the button redirects to Chrome Web Store (below)
Click to download an extension
Click to download an extension
3. Click the Add extension button in the pop-up message to confirm you allow this installation.
image
4. Once added, you will see this confirmation.
image
5. For your convenience, pin the extension logo to the browser's toolbar by pinning it in the Extension section (a puzzle piece logo on the top right of your browser screen).

Once pinned, you will always see the Authenticator logo as a QR code on your browser's toolbar.

Click to pin the extension on a browser panel
Click to pin the extension on a browser panel
You will see the QR code logo at all times
You will see the QR code logo at all times

A mobile app is represented on your mobile device as any other app does.

6. Click the Authenticator's logo on the top right of your browser.

A mobile app is launched on your mobile device as any other app does.

image
7. After pinning the Authenticator’s logo, upon clicking it, you will see a window like this on the top right of your screen. Yours will be empty in the beginning.
image
Larger view of the extension
Larger view of the extension
Freshly installed Google Authenticator app
Freshly installed Google Authenticator app
8. There are two ways to add a 2FA account: via the QR code and manual entry.
QR code option
  • Quick access to the QR scanner is on the main page of the extension.
    • Authenticator extension
    Authenticator extension
  • Alternatively, there is an option to click the Scan QR Code button in the Pencil - + menu.
    • image
  • You will see an option to select a specific area on the page. Point it to the QR code you see on the page with your left mouse button pressed.
    • image
  • Once you catch the QR code, release the mouse button. A pop-up message about adding an account will appear on top of the page.
    • image
Manual entry option
  • Click the pencil logo to edit the extension's info.
    • image
  • Click the + logo to add a new website that is 2FA protected. In our case, it is the DS Dashboard website.
    • image
  • Click the Manual Entry button.
    • image
  • Put a name for your account for your convenience. By default, the account is named after the Issuer's company name. Copy and paste the secret code you received in your Dashboard's menu Account settings - 2FA protection. Click OK.
    • image
Google Authenticator app
  • On a freshly installed Google Authenticator app, you can see both options available on the start screen.
    • image
  • If you already have a Google Authenticator app with some accounts, you can reach the menu for adding a new account via either of the options by clicking the + button. Screenshots are not available at this point due to the security policy
  • You can rename your account for your convenience and see the countdown timer for 30 seconds same as on the browser extension.
⚠️
Make sure to save your recovery 2FA code. You will need it to recover your 2FA account if you reinstall the application or need to add it to another device.
9. Now you have the 2FA extension set up for you. You can see the 6-digit change every 30 seconds for enhanced security.

The default named account on the Authenticator looks like this:

image
image
📌
After the first installation, the extension might ask you for some permissions. Please allow it to interact with the page; otherwise, you will not be able to use it with Dashboard or any other 2FA-protected website or service.
image

How do I enable the 2FA protection on the DS Dashboard?

Make sure the Google Authenticator app is installed on your mobile phone or in a browser as an extension. See the guide above.

📌
Despite browser extension being more comfortable, the app is considered even more secure.
1. In your DS Dashboard account, go to the menu Account settings - 2FA protection and click the switch to enable 2FA protection to start the process of adding your Dashboard account to your Google Authenticator.
The screenshot may differ from the actual appearance due to constant design improvement.
The screenshot may differ from the actual appearance due to constant design improvement.
2. Here is where you can find the 2FA protection section. 2FA is disabled yet.
The screenshot may differ from the actual appearance due to constant design improvement.
The screenshot may differ from the actual appearance due to constant design improvement.
3. We described the process of adding your DS Dashboard account to your Authenticator extension or the Google Authenticator app perfectly well inside the DS Dashboard (expand for the screenshot), so we will not repeat it here.
The screenshot may differ from the actual appearance due to constant design improvement.
The screenshot may differ from the actual appearance due to constant design improvement.
However, here is our advice: act fast because codes expire, and you will have to start the process again. Expand for the best rsequence.
  1. Copy the recovery code from Step 3 to some notes app not to lose it.
  2. Enter the confirmation code from your email in Step 4.
  3. Open the Authenticator extension, click the code to copy and paste it into Step 4, or enter manually from your Google Authenticator app.
  4. Click the Save changes button.
  5. After the 2FA is enabled, you will see that your status is changed to Enabled.
    6. image

    You will also receive an email confirmation about it.

    image
You have enabled your 2FA protection and will receive an email confirmation.

Can I disable the 2FA protection?

If you need to disable your 2FA protection for some reason, follow the steps below.

1. In your Dashboard account, go to the menu on the top right and click Account settings.
The screenshot may differ from the actual appearance due to constant design improvement.
The screenshot may differ from the actual appearance due to constant design improvement.
2. See the 2FA protection section.
image
3. Slide the switch left and enter the 2FA code from your Google Authenticator app or browser extension.
image
You have disabled your 2FA protection and will receive an email confirmation.