User GuideDeveloper GuideTechnology Partners
User Guide
BlogLogin

Two-factor Authentication

Learn how to set up Two-Factor Authentication (2FA) in Netcore CE for secure app-based login.

Suggest Edits

Overview

Two-factor authentication (2FA) is a critical security feature now available for Netcore CE. This adds an extra layer of security to your account by requiring two forms of identification before granting access.

In addition to your username and password, 2FA requires a code from an authenticator app or sent to your email as a one-time password (OTP). This ensures that unauthorized access is prevented even if your password is compromised.
2FA is essential for securing sensitive data and maintaining the integrity of your marketing automation platform.

We have the following methods available for 2FA.

  • App Code-Based Authentication: A code is generated using an authenticator app (for example, Google Authenticator or Microsoft Authenticator). This is the recommended method for enhanced security.
  • Email OTP Authentication: A one-time password is sent to your registered email. This is another 2FA method.
  • Backup Codes: A set of 10 single-use codes for users for their app-based 2FA.

📘

Important Points to Remember

  • CE panel is running on IA 2.0. App-based two factor authentication is not available for legacy panels.
  • Download a compatible authenticator application like Google Authenticator, Microsoft Authenticator, or any other authenticator app.
  • Super admin access is required to configure or switch between 2FA methods.
  • All user accounts have valid and accessible email addresses for email-based OTP and notifications.
  • Ensure that the backup codes are stored securely for emergency login scenarios.
  • Use a device that supports QR bode scanning or manual key entry for app-based 2FA setup.
  • You must have access to the registered email to receive OTPs, 2FA setup confirmation related notifications.

Super Admin

A Super Admin in the Netcore CE panel is the highest-level administrator with full control over the panel's settings and configuration. This role is automatically assigned to the admin user created during the initial setup of the panel and has the Admin as their user name.
Key Responsibilities of a Super Admin:

  • Access and configure advanced settings, such as enabling or switching between 2FA methods.
  • Add, remove, or modify user roles and permissions.
  • Enable, disable, or modify security features like 2FA to ensure panel data integrity.
  • Perform actions and access features that other admin or non-admin users may not have permission to control.
  • Assign or remove users to export data.

Set Up 2FA: For Admin Users

As the super admin, you are responsible for managing the 2FA setting for your panel. Only the super admin can enable, disable, or switch between app-based and email-based 2FA methods in the Account Configuration settings.

Follow the steps below to enable, configure, or switch between 2FA methods:

  1. Log in to Netcore CE using your super admin credentials and navigate to Account configuration.
  2. Select Authenticator APP or Email in Two-factor Authentication section.
    • Authenticator APP: Use an authenticator app to generate a secure OTP for login.
    • Email: Receive a one-time password(OTP) at the registered email address.
  3. Select Confirm to change your authentication method. This change applies to all the panel users on their next login.

Set Up 2FA: For Non-Admin Users

If 2FA is enabled for a panel, non-admin users must follow the steps below to set up and activate app code-based 2FA.

  1. First-time login: When you log in to a 2FA-enabled panel for the first time, you see the Two-step Verification setup screen.
  2. Download and install a compatible authenticator app (e.g., Google Authenticator, Microsoft Authenticator, Duo Mobile, Authy) from the Play Store or App Store.

OR

Scan the QR code displayed on the screen. You can also manually enter the security key provided on the screen into the app.

OR

Receive email OTPs

  1. Enter the six-digit code generated by the authenticator app into the verification field. Click Verify to complete the setup.
  2. Setting up 2FA successfully a popup appears displaying your backup codes. Save or download these codes as a TXT file for emergencies when your app is unavailable.
  3. You will receive an email confirmation upon successfully setting up 2FA.

Use Backup Codes

If you cannot access your authenticator app, click the Use backup code option on the login screen. Then, enter one of the backup codes to log in.

Remember that each code can be used only once. When two codes remain, you must generate a new set of codes in the User profile section.

Switch to a Different Authenticator App

To change your authenticator app, follow these steps:

  1. Navigate to User Profile and click Use a Different Authentication App.
  2. Confirm the action logs you out, expires all backup codes, and requires you to set up 2FA again.
  3. Log in again and complete the setup process with the new app. Refer here to complete the setup process.

Updated 3 days ago