Two-factor authentication adds a layer of security to your accounts by requiring that you have your mobile device (cell phone or tablet) with you when logging in. Any time you log into RBCommons, a temporary token code will be sent to your device over text message, or generated by a token generator app.
This token code will be required alongside your username and password. If a malicious hacker tries to log into your account, they'll need your mobile device or they'll be out of luck. So keep that safe!
Enabling two-factor authentication
It only takes a minute to enable two-factor authentication on your account. Simply:
- Go to your My Account page and click "Authentication" on the left.
- Click "Enable two-factor authentication" on the right.
- Choose whether to use a token generator app, like Google Authenticator (recommended), or to receive text messages on your cell number (carrier rates may apply).
- Follow the instructions for your choice.
You'll receive your first generated token, which will be used to verify that everything was set up correctly.
After you enable two-factor authentication, you'll have the opportunity to set a secondary phone number to use in case you lose your primary mobile device or app settings.
Download your backup tokens!
If you're ever locked out of your account due to a lost or broken phone or tablet, you'll need a backup token to get back in. These are a pre-generated set of token codes that you can use when logging in.
After you enable two-factor authentication, click "View Backup Tokens." You may have to verify your password and auth token the first time. Then, follow the instructions to generate a set of tokens. Make sure you save these somewhere safe!
You'll need to have RBTools 0.5.3 or higher in order to log in with an authentication token. When you log in next, you'll be prompted for an authentication token, which will be provided to your mobile device. Otherwise, the process is the same as before.