Two factor authentication, also known as 2FA, is a simple way to add a significant amount of security to your authentication scheme. 2FA is a combination of something you know, your password, and something you have, Google Authenticator. Implementing 2FA prevents an attack from being successful if someone phishes your password, or if it is leaked in a hack or breach. Thus, the attacker would also need to have access to your second factor of authentication.
Automox supports 2FA through use of the Google Authenticator application and through email authentication. I prefer and strongly recommend the authenticator because to be successful, attackers would have to obtain not only your password, but would also need access to your mobile phone, with the app installed and configured.
Implementing 2FA with Automox
To implement 2FA with Automox, you’ll want to start by installing the Google Authenticator app on your mobile device. This can be found in the app store on your device:
Next, log in to the Automox Console and go to Settings located at the bottom of the left sidebar:
Once you land on the settings page, select ‘My Profile’ at the bottom of the page. You’ll see two options for either ‘Email-based two-factor authentication’ or ‘Authenticator based two-factor authentication’:
To enable 2FA with the Google Authenticator app, select ‘Authenticator based two-factor authentication’. After selecting the checkbox click ‘Save Changes’, and you will be presented with a configuration screen:
A QR code will display in a new window for you to scan in the Google Authenticator app (I have removed it in this screenshot for security purposes). You will then enter the next two codes that appear in the Authenticator app. Once both codes are entered you will see the Submit button appear.
To configure email based 2FA, simply select the option ‘Email based two-factor authentication’. You will receive an email with a one time password each time you login. Copy the code in the email, and paste it in when you see the dialog box.
If you have successfully enabled 2FA, you will now see the following screen upon logging into Automox, regardless of which method you chose:
It is as simple as that.
You have now enabled 2FA for your Automox account! As always, if you have any questions feel free to reach out: firstname.lastname@example.org.
Automox is a cloud-based patch management and endpoint protection platform that provides the foundation for a strong security framework by automating the fundamentals of security hygiene to reduce a company’s attack surface by over 80 percent. A powerful set of user-defined controls enables IT managers to filter and report on the vulnerability status of their infrastructure and intuitively manage cross-platform OS patching, third party patching, software deployment, and configuration management. To sign up for a free, 15-day trial of Automox’s cloud-based, automated patch management solution, visit www.automox.com/signup.