How to enable two-factor authentication at the Hideez Enterprise Server?
Hideez Enterprise Server – Enabling 2FA
Note: this section explains how to enable two-factor OTP authentication only for entering the HES web interface. To log in from OTP to other sites, you must use the appropriate settings on these sites.
Enabling 2FA at HES
Enabling for admin account
Step 1
In the upper right corner of the window, click the profile icon and select the Profile from the drop-down list.
Step 2
Go to the One-Time Password and click on the Add OTP app button.
Step 3
Follow the instructions.
You can use Hideez Authenticator as an application for OTP generation.
Step 4
After successfully enabling two-factor authentication, you will be prompted to save your recovery codes. 10 codes, each of which consists of 8 characters. You can log in with their help if for some reason you cannot enter the OTP code.
Log in with the recovery code.
Two-factor authentication is configured. Now you can use it with the authenticator app.
Adding HES admins' account with OTP to the Hideez key
If you want to use Hideez Key to generate OTP, then creating your administrator account enter your secret key in the corresponding field.
The Secret Key is the 32 alphabetic value from Step 3.
Learn more about creating accounts via Hideez Client. Learn more about creating accounts on HES. How to enter credentials with the Hideez key.
Disabling 2FA at HES
To disable two-factor authentication on the HES server, go to the Profile tab, One-Time Password section and click Disable 2FA.
Confirm the action.
Two-factor authentication is disabled. But you can always resume it.
Resetting recovery codes at HES
After you disable 2FA on HES and enable it again, your recovery codes will be reset.
Please, note, if you just reset the OTP application, recovery codes will be not reset.
Log in with recovery code
If for some reason you cannot enter the OTP code at the authorization phase, then use the previously generated recovery codes.
Step 1
Enter your login and password for your account.
Step 2
Click on the One-Time Password button.
Step 3
Click Log in with a recovery code.
Step 4
Enter one of the previously saved recovery codes and click Login.