2 Factor Authentication

Definiton: 2FA (2 Factor Authentication) is a security process in which users provide two different authentication factors to verify themselves.

Implementation: An Authenticator App will be the 2FA method. The 2FA mechanism is TOTP (Time-based-One-Time-Passwords), which are rotating, 6-digit codes presented in the Authenticator App for each of your online accounts.

Resulting workflow: Typical, online account, login steps

  • Enter an account password from the Password Manager Tutorial

  • Enter a TOTP from the Authenticator App, from this Tutorial.

    • If this option is not availalable, an SMS will be recieved and used (set up in the Virtual Phone Numbers Tutorial).

logo_ente_auth_bg Software

Ente Auth

Why this software?

  • Provides critical features unavailable from other Authenticator Apps, including:

    • Open Source

    • Encrypted sync/backups to the Ente Auth cloud (only you, not Ente, retains the encryption keys)

    • Quick recovery on another device

Note

If you currently use an Authenticator App, all entries will be migrated to Ente Auth. If you use the Authenticator App Authy that is no longer recommended by Vonvoo, please visit the Migrate section down below. For more details, read the Vonvoo blog post Migrate away from 2FA app Authy by Twilio

logo_ente_auth Install

Install on your smartphone.

Note

External link: https://ente.io/auth/

logo_ente_auth Account

  1. On your smartphone, open the app Ente Auth and choose sign up.

  2. On your smartphone, open the app Bitwarden

    • Create a new account entry for Ente Auth:

      • Note - if you use Ente for photos, use a new and unique Ente account for Ente Auth.

      • Name: Ente Auth - example@gmail.com

      • Username: example@gmail.com

      • Password: (generate a password within BitWarden)

      • URL: https://auth.ente.io/login

      • Save the entry in Bitwarden

  3. On your smartphone in app Bitwarden, tap on the new Ente Auth account entry

    • Copy the username and paste into the app, Ente Auth

    • Repeat this process for the password

    • Save the account settings within the app, Ente Auth

  4. Verify your email address.

  5. On your computer, log into Ente …

Note

External link: https://web.ente.io

  • Click on Settings (top-left) and click on Two-Factor

  • Enable 2FA

  • On your smartphone, in the app Ente Auth, scan this QR code.

  • On your computer, verify this new 2FA entry.

  • Save the recovery code in the app BitWarden, within the account entry for Ente Auth (this is a critial step to maintain access to the account)

logo_ente_auth Usage

Note

While Vonvoo no longer recommends the 2FA app Authy, we can use their documentation as a resource. Whenever they refer to their product, simply use app Ente Auth instead.

Enable 2FA for your core email account, using app Ente Auth

  • Use Authy documentation to add the 2FA entry to app Ente Auth

Note

External link, gmail 2FA: https://authy.com/guides/googleandgmail/

External link, all other 2FA: https://authy.com/guides/

Warning

Do not use the app Authy. Only use the website for documentation.

logo_ente_auth Migrate

All entries in any other Authenticator Apps should be migrated to Ente Auth.

Note

If you use Duo Push for work, leave those entries in the Duo app.

This process will be the similar to the Usage Tutorial section This process should be completed in the final Essentials Tutorial.

  • Navigate, in a browser, to the account security section of the online account, detailed in the Usage section.

    • Within the online account, remove the current Authenticator App entry. Then follow Ente Auth Documentation to add a new 2FA entry in the Ente Auth app.

  • In the old Authenticator App, delete that entry. When the old Authenticator App has no entries, uninstall the app.

Essential Recovery

Steps for recovery, if/when any or all of your digital devices become inaccessible/lost/stolen or damaged beyond usage:

This tutorial is complete!