Enabling or Disabling Two-Factor Authentication at the Site Level

Enabling Two-Factor Authentication

You can enable two-factor authentication for all Brightspot users. In addition, you can override the site-level two-factor authentication setting at the role level and at the user level.

Caution

The following procedure locks your and all other accounts until users are able to enter their own authentication passwords. Ensure your users are trained and have an authenticator installed on their phones before enabling two-factor authentication at the site level.

  1. Install an authenticator, such as Google Authenticator, on your device. The authenticator must be able to read QR codes.

  2. From the Navigation Menu, select Admin > Sites & Settings.

  3. In the Sites widget, click Global. The Edit Global widget appears.

  4. In the Edit Global widget, under the Main tab, under Security, turn on Two-Factor Authentication Required?.

  5. Click Save. The Enable Two-Factor Authentication widget appears. (You are effectively locked out of your account; you must complete this procedure before you can continue using Brightspot.)

    ../../../_images/enable-two-factor.png

    Enable Two-Factor Authentication Widget

  6. Using the authenticator on your device, scan the QR code in the widget. The phone responds with an authentication code.

    ../../../_images/auth-code.png

    Sample Two-Factor Authentication Code

  7. Enter the authentication code in the Code field.

  8. Click Verify. You return to the Edit CMS widget.

Disabling Two-Factor Authentication

  1. From the Navigation Menu, select Admin > Sites & Settings.
  2. In the Settings widget, under Applications, click CMS.
  3. In the Edit CMS widget, under the Defaults tab, turn off Two-Factor Authentication Required?.

See also: