2-FACTOR
AUTHENTICATION
WITH
TWO-FACTOR AUTHENTICATION
2
Two-Factor Authentication and Authy
What is Two-Factor Authentication?
Two-Factor Authentication is a process involving two stages to verify the identity of someone trying to access services in a computer or in a network. It provides an extra layer of protection. Two-factor authentication is a simple feature that asks for more than just your password. It requires both “something you know” (like a password) and “something you have” (like your phone). After you enter your password, you’ll get a second code sent to your phone, and only after you enter it will you get into your account. Think of it as entering a PIN number, then getting a retina scan, like you see in every spy movie ever made. It’s simply added security for your online accounts.
What is Authy?
Authy is a third-party provider of a token-based authen-tication process. Authy can be used for a number of online applications like Gmail, Wordpress, Evernote and Facebook. Most of these applications involve a “normal” sign-in process (username and password) which is the first authentication. Authy provides the second authentication
via mobile app, browser or SMS. Visit www.authy.com to
learn more.
Authy and Viewabill
Viewabill has chosen Authy to provide it’s Two-Factor Authentication process. Viewabill Two-Factor Authentication is available for customers
using Viewabill Enterprise and is enabled by contacting your Viewabill
Transparency Concierge or [email protected]. Once enabled, the
Assigning Two-Factor Authentication to new and existing users
1. After signing into Viewabill, select the Enterprise/Administration toggle. 2. Select Users icon in the main menu.
Assign to Existing User: Select a user. In that user’s Overview section you will see a checkbox that says “Require Two-Factor Auth.” Checking the box will require this user to perform a few easy steps to configure their Two-Factor Authentication and then require their use of Two-Factor Authentication for all subsequent logins. To disable this feature, simply deselect the checkbox.
Assign to New User: To enable Two-Factor Authentication for a new user,
create a new user by selecting the
icon. Fill out the new user’s informationand check the box that says “Require Two-Factor Auth.” Finally, click the “Create User” button. The new user now requires Two-Factor Authentication to sign into Viewabill. To disable this feature for the user, follow the instructions for Existing Users and deselect the “Require Two Factor Auth” checkbox.
Administrator (Admin)
TWO-FACTOR AUTHENTICATION
4
Signing into Viewabill with Two-Factor Authentication
If an Admin has enabled Two-Factor Authentication for your user account, you will see the following screens when you log into Viewabill. Only the Admin can determine if you have this security feature. Go to page 7 to see the Viewabill
2-Factor Authentication Sequence Diagram.
Users
1. Log into Viewabill by entering your username and password on the sign in page.
2. You will be prompted to enter your Authy credentials, which is your mobile number.
3. Clicking Enable initiates your Authy account. (You will not
have to repeat this process again.)
4. If you have an Authy account, Viewabill will be added to your list of applications and you can immediately access authentication tokens.
5. If you do NOT have an account with Authy, you will receive a text message containing a link to install the Authy App. The Authy App is available for the following mobile devices: iOS, Android and Blackberry. A Google Chrome
App is also available for desktop users at chrome.google.
com/webstore.
6. Once the Authy App is downloaded, follow the instructions to complete the set up of your account. (See pages 5 and 6 for more information about the Mobile and Chrome Apps.)
7. Once this process is completed, you must Verify your Authy Account by supplying an authentication token on the Viewabill Website. Access this token via:
a. SMS (by clicking the link located below the token input field). Doing this will send your authentication token via text message to your mobile device. b. Authy’s Mobile App
c. Authy’s Chrome App 8. Click Enable.
Using Authy Mobile App to create authentication tokens
Download the application to your mobile device through the respective app store and perform the steps below: 1. Once downloaded, open the Authy App. You will be prompted to enter your phone number’s country code,
which is “1” for the United States, and your mobile phone number. 2. Then enter your email address.
3. Choose to Get Account Verification via: “Phone Call” or “SMS”. 4. You will be prompted to Enter Your Registration PIN.
5. Select “Don’t Allow” or “OK” to receive push notifications on your mobile device for Authy.
6. Once this process is complete you will notice that Viewabill is visible in the App, and by selecting Viewabill you will see the 7-digit verification code that expires and refreshes every 20 seconds.
7. Finally, use the Authentication Token provided when you sign into Viewabill.
1
Users
7 6
TWO-FACTOR AUTHENTICATION
6
Using Authy Chrome App to create authentication tokens
Users
1. In the Chrome browser, go to chrome.google.com/webstore.
2. Search the store for “Authy” and download it. 3. Once downloaded, open Chrome App Launcher.
4. Click on the Authy logo in your Chrome App Launcher. 5. You will be prompted to enter your country code and mobile
number with a message underneath that states: “Cellphone number should be the same you use for Authy on your mobile phone and all your other devices.” Select OK.
6. You will be prompted to enter your email to create a new account. 7. Select to have verification sent via “SMS” or “Call”.
8. You will be prompted to “Enter Your Registration PIN” that you receive via SMS.
9. You will now see the full Authy application, however you must register a mobile device. Before doing so select the “Devices” tab in the Chrome App and enable Multi-Device by checking the box. 10. Finally, use the Authentication Token provided when you sign into
Verify Token Login to Viewabill Viewabill requires 2-Factor Authentication Enter Authy Credentials Access Download Authy App Viewabill added to Authy App Get Viewabill Token CAN BE DONE A T ANY TIME Create Account Login to
Authy App Must be same information
LOG INTO VIEW
ABILL WITH TWO-F
ACTOR AUTHENTICA
TION
Viewabill 2-Factor Authentication Sequence Diagram
“(123) 456-7890” “[email protected]”
