This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
2-factor-authentication [2018/04/24 08:52] ton [LMS] |
2-factor-authentication [2020/06/13 15:10] (current) |
||
---|---|---|---|
Line 1: | Line 1: | ||
+ | [[lms-security|{{ :: | ||
====== 2-factor authentication ====== | ====== 2-factor authentication ====== | ||
===== LMS ===== | ===== LMS ===== | ||
Steps in activating two-factor authentication on moodLearning-powered learning management system (LMS): \\ | Steps in activating two-factor authentication on moodLearning-powered learning management system (LMS): \\ | ||
\\ | \\ | ||
- | + | ==== Administrator ==== | |
- | 1. Login as Administrator to the LMS. As admin, you are not required to fill in the token field so you can just leave the token field empty. | + | 1. Login as **Administrator** to the LMS. As admin, you are not required to fill in the token field so you can just leave the token field empty. |
2. After a successful login, select now a user you want to use Two-Factor Authentication by navigating your way to //Site Administration// | 2. After a successful login, select now a user you want to use Two-Factor Authentication by navigating your way to //Site Administration// | ||
- | {{: | + | {{ :: |
From here simply click the gear icon on the user to redirect you to the user's profile editing page. | From here simply click the gear icon on the user to redirect you to the user's profile editing page. | ||
Line 14: | Line 15: | ||
3. Next is to set the authentication method to **A2FA (Anonther 2-Factor Auth)**. | 3. Next is to set the authentication method to **A2FA (Anonther 2-Factor Auth)**. | ||
- | {{: | + | {{ ::auth1.png?200 |}} |
To generate the QR code for the user, scroll down to **Other fields** and click the //Generate new secret// button | To generate the QR code for the user, scroll down to **Other fields** and click the //Generate new secret// button | ||
- | {{: | + | {{ :: |
Then click Update Profile to save the new setting. | Then click Update Profile to save the new setting. | ||
Line 24: | Line 25: | ||
4. To check for the generated QR code, go to the user's profile you've just updated. | 4. To check for the generated QR code, go to the user's profile you've just updated. | ||
- | {{: | + | {{ :: |
You may now use the snipping tool or any screen capturing tool and send this QR image to your user. Currently sending QR code images are done manually. | You may now use the snipping tool or any screen capturing tool and send this QR image to your user. Currently sending QR code images are done manually. | ||
+ | \\ | ||
+ | \\ | ||
+ | ==== User ==== | ||
5. If admin failed to send the QR code, the user may click the //Re-send token to your email instead?// after filling in the fields username and password in the login page. | 5. If admin failed to send the QR code, the user may click the //Re-send token to your email instead?// after filling in the fields username and password in the login page. | ||
- | {{: | + | {{ :: |
The system will prompt if the link to the token is already sent to the user's email address. | The system will prompt if the link to the token is already sent to the user's email address. | ||
- | 6. The user will just have to follow the link provided in the email then copy the token provided | + | 6. The user will just have to follow the link provided in the email then copy the token provided |
- | {{: | + | {{ ::code.png?200 |}} |
- | 5. Now if the user is now in his account, he may just go to his profile to scan the QR code with //Google authenticator// | + | 7. If the user is now in his account, he may just need to go to his profile to scan the QR code with //Google authenticator// |
- | {{:screenshot_20180418-164010.jpg?400|}} | + | {{ :: |
- | {{: | + | {{ :: |
- | {{: | + | {{ :: |
- | After you register | + | After the QR code is registered, copy the token provided and add this to the token field in the login page. |
- | + | ||
- | 6. Now try to login the user with the token provided by the authenticator. | + | |
- | {{: | + | |
- | + | ||
+ | 8. Now try to login the user with the token provided by the authenticator. | ||
+ | {{ :: | ||
\\ | \\ | ||
\\ | \\ | ||
+ | ===2-Factor Authentication FAQs=== | ||
+ | * [[2-Factor Authentication FAQs]] | ||
+ | \\ | ||
+ | \\ | ||
+ | ===== Content Management System===== | ||
+ | A similar measure could be put in place for moodLearning-powered CMS. Example here: | ||
+ | \\ | ||
+ | {{ :: | ||
+ | \\ | ||
+ | ====== See Also ====== | ||
+ | * [[LMS Security]] | ||
+ | |||
+ | ---- |