Multi-factor authentication increases the security of your Threat Stack account, because it requires more than knowledge of a password to access Threat Stack. If you do not already use a multi-factor authentication provider, then you can use the Google Authenticator app to enroll in multi-factor authentication with Threat Stack.
Threat Stack only verifies multi-factor authentication with the Google Authenticator app. If you use a different time-based one-time password (TOTP) app, then that TOTP app should work, but Threat Stack does not support it.
- Access to the Threat Stack console
- On your mobile device, a downloaded and installed up-to-date version of the Google Authenticator app
Set Up Multi-Factor Authentication
- Log into Threat Stack using your account.
- In the left navigation pane, click Settings. The Settings page displays. By default, the General Settings tab displays.
- In the General Settings section, click the Enroll in Multi-Factor Authentication button. The Configure Mobile Device App screen displays.
- In the Threat Stack browser window, click the Yes button. The Scan your QR code screen displays.
- On your mobile device, use the Google Authenticator to scan the QR code. The Google Authenticator app displays a code.
- Click the Next button. In the Threat Stack browser window, the Confirm Code screen displays.
- In the Threat Stack browser window, type the code displayed in the Google Authenticator app.
- Click the Confirm button. Your Threat Stack account successfully enrolls in multi-factor authentication.
Make sure you keep a copy of your backup codes in a safe location. If you cannot sign in using Google Authenticator, then you can use one of these backup codes instead.
- Click the Done button. You return to the General Settings tab. The next time you log into Threat Stack, you will be prompted for both a password and a Google Authenticator code.