Skip to main content
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products

PowerProtect Data Manager 19.11 Cyber Recovery User Guide

Enabling multifactor authentication

After initial login to the Cyber Recovery UI, optionally enable multifactor authentication to provide added protection for the Cyber Recovery environment.

Prerequisites

From the Internet, download any authenticator application. Examples of authenticator applications include, but are not limited to, the following:

  • Google Authenticator
  • Authy
  • Duo Mobile
  • LastPass Authenticator

An authenticator application generates a one-time security code over an interval of time to provide two-step verification to authenticate Cyber Recovery users. The Cyber Recovery software requires a six-digit security code.

About this task

Users must enable multifactor authentication for their own accounts. Multifactor authentication is not available to Dashboard users. The Security Officer (crso) cannot enable multifactor authentication for other users, but can disable it for all users.

NOTE
  • Multifactor authentication is a time-based security mechanism. The Cyber Recovery host time cannot differ from the authenticator time by more than one minute (plus or minus). If the time differs by more than +60 seconds or -60 seconds, multifactor authentication is not enabled.
  • If you enable multifactor authentication and then are unable to provide the security code, you cannot log in to your Cyber Recovery account. Contact the Security Officer (crso) to disable multifactor authentication for your account, and then enable multifactor authentication again when you can log in.
  • As the Security Officer (crso), if you enable multifactor authentication and then are unable to provide the security code, use the crsetup.sh script to change the Security Officer (crso) password. When you change the password, multifactor authentication is disabled.
  • Integrated Data Protection Appliances deployments do not support multifactor authentication.

Steps

  1. Download and install the authenticator application on your mobile device or computer.
  2. From the Masthead Navigation, open the drop-down list next to the person icon.
  3. Click Multi-Factor Authentication.
    The setup page is displayed.
  4. Swipe right on the slider to enable the multifactor authentication.
  5. Do one of the following:
    • Use the device camera to scan the QR code on the setup page to provide the security key.
    • If your use of mobile devices or cameras is restricted, click Show Secret Key to view the security key and then enter it into the authenticator.
  6. Enter two consecutive security codes:
    1. In the Security Code 1 field, enter the first security code that the authenticator generates.
    2. In the Security Code 2 field, enter the next security code that the authenticator generates.
    If you enter nonconsecutive security codes, multifactor authentication is not enabled. Wait for the authenticator to generate a new security code and ensure that you enter the next consecutive security code.
  7. Click Save.
    For subsequent logins, the Cyber Recovery software prompts for a security code in addition to a username and password.
  8. To disable multifactor authentication, swipe left on the slider.
    The Security Officer (crso) and the Admin user, whose multifactor authentication is disabled, receive an email message that indicates that multifactor authentication is disabled. If multifactor authentication for the Security Officer (crso) is disabled, only the Security Officer (crso) receives an email message.

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\