Using Multi-Factor Authentication to Secure your Account

Multi-factor authentication, also known as MFA or 2FA, enhances the security of your control panel account by requiring two types of credentials for a successful login:

  1. The correct username and password.
  2. A frequently-updated code generated by an authenticator application or password manager.

Configuring Multi-Factor Authentication

1

Install a multi-factor authentication application such as Authy or Google Authenticator on your device. Search your device's application store for other choices.

2

Click the user widget in the upper right corner of the control panel dashboard. The user menu will appear.

3

Click the "Multifactor Auth" link in the user menu.

4

Click "Add authenticator" in the top left corner of the content area, then select the type of authenticator that you want to use:

  • Authenticator App: supports mobile authentication apps such as Authy and Google Authenticator
  • Security Key: supports hardware authentication keys that use the U2F protocol
  • FIDO2 Security Key: supports hardware authentication keys that use the FIDO2 proctocol, such as YubiKey or SoloKey.

If you're using a hardware authentication key and are not sure which protocol it uses then check your key's user manual.

5

If you selected "Authenticator App" a scannable code will appear:

Follow the instructions in your MFA application to scan the code.

Your MFA application will display a 6-digit number after you have scanned the code. Enter the 6-digit number in the field provided, then click the blue "Enable" button to enable multi-factor authentication.

6

If you selected "Security Key" or "FIDO2 Security Key" then insert your key into your computer and follow the onscreen instructions to enable multi-factor authentication.

Logging in to your Account with Multi-Factor Authentication

1

Visit https://my.opalstack.com/signin/ in your web browser.

2

Enter your control panel username in the Username field.

3

Enter your control panel password in the Password field.

4

Click the Sign In button.

5

If you are using a mobile app for authentication then check your application to obtain the 6-digit authentication code and enter it into the form, then press Sign In to complete your login.

6

If you are using a security key, then insert your key into your computer's USB port and wait for the light on the key to blink. When the light blinks, press the button on your key to complete your login.

Disabling Multi-Factor Authentication

1

Click the user widget in the upper right corner of the control panel dashboard. The user menu will appear.

2

Click the "Multifactor Auth" link in the user menu.

3

Click the Delete icon (a trash can) in the rightmost column of the row for the authenticator you want to remove.

4

Click "Confirm Deletion". The authenticator will be deleted.