What is two-factor authentication?
Two-factor authentication (2FA) is an extra layer of security to ensure that even if your password is compromised, someone else cannot log into your account. This is done by pairing the password you use to sign in with a code provided by an authentication app on your phone or a browser plugin on your computer. Without this second authentication step, a hacker or malicious actor cannot log into your account even if they have your password.
Why am I being asked to set up two-factor authentication?
Beginning March 4th, two-factor authentication is required for all CrashPlan for Small Business administrators. This is a proactive measure intended to keep your organization's valuable business data secure following industry best practices for security.
See How do I set up two-factor authentication? for more information.
Can I turn off two-factor authentication?
Two-factor authentication cannot be turned off for any reason. If you need to reset your 2FA, see I need to reset my two-factor authentication.
I don't have a smart phone to use for two-factor authentication
Two-factor authentication can be set up on other mobile devices as well (such as an iPad). Administrators who do not have a suitable device or want to use an alternative method to authenticate can install a browser plugin to display the two-factor authentication code in their browser. We recommend Authenticator.
Do I have to use Google Authenticator for two-factor authentication?
While we only test on Google Authenticator and the Authenticator browser plugin, any Time-based One-Time Password (TOTP) application should work.
Can I set up two-factor authentication on multiple devices?
Yes. To set up, scan the QR code or manually enter the code presented when first setting up two-factor authentication on all the devices you want to use for authentication. Multiple devices should not be used to allow multiple users to log into a single account.
I'm getting an invalid code error when setting up two-factor authentication
There are a few reasons that an "invalid error code might occur:
Setup is incomplete
Each QR code used for setting up two-factor authentication is valid only for a limited time, usually a few minutes. If setup isn't completed before the code expires, the account added to your authenticator won't work. To resolve:
- Remove the Code42 account previously added to your authenticator. Do not skip this step.
- Refresh the sign in page in your web browser and sign in again, if prompted.
- Scan the QR code or manually enter the code as a new account in your authenticator.
- Enter the verification code from your authenticator in the last step of the sign in screen.
Entering a code from a different account
If you have multiple two-factor authentication accounts set up in your authenticator, you may accidentally enter the code corresponding to a different account. Double-check the account associated with the code you are using and try again.
Device time is out of sync
If your device times are off, the authentication process may fail. We recommend checking your device time at https://time.is/. If the device time is off, the best way to resolve is to ensure the time is set automatically:
- Change the time - iOS
- Set time, date & time zone - Android
- Set the date and time on your Mac
- How to set your time and time zone - Windows
Need help setting up two-factor authentication? Check out our video guide.