How to enable two-factor authentication at the Hideez Enterprise Server?

Hideez Enterprise Server – Enabling 2FA
Note: this section explains how to enable two-factor OTP authentication only for entering the HES web interface. To log in from OTP to other sites, you must use the appropriate settings on these sites.

Enabling 2FA at HES

Enabling for admin account

Step 1

In the upper right corner of the window, click the profile icon and select the Profile from the drop-down list.

Step 2

Go to the One-Time Password and click on the Add OTP app button.

Step 3

Follow the instructions.
You can use Hideez Authenticator as an application for OTP generation.

Step 4

After successfully enabling two-factor authentication, you will be prompted to save your recovery codes. 10 codes, each of which consists of 8 characters. You can log in with their help if for some reason you cannot enter the OTP code.
Two-factor authentication is configured. Now you can use it with the authenticator app.

Adding HES admins' account with OTP to the Hideez key

If you want to use Hideez Key to generate OTP, then creating your administrator account enter your secret key in the corresponding field.
The Secret Key is the 32 alphabetic value from Step 3.

Disabling 2FA at HES

To disable two-factor authentication on the HES server, go to the Profile tab, One-Time Password section and click Disable 2FA.
Confirm the action.
Two-factor authentication is disabled. But you can always resume it.

Resetting recovery codes at HES

After you disable 2FA on HES and enable it again, your recovery codes will be reset.
Please, note, if you just reset the OTP application, recovery codes will be not reset.

Log in with recovery code

If for some reason you cannot enter the OTP code at the authorization phase, then use the previously generated recovery codes.

Step 1

Enter your login and password for your account.

Step 2

Click on the One-Time Password button.

Step 3

Click Log in with a recovery code.

Step 4

Enter one of the previously saved recovery codes and click Login.