How to set up Dual Factor Authentication

Table of contents

1. Introduction
2. Setting Dual Factor Authentication using an application
3. Setting Dual Factor Authentication using browser extention
4. Setting Dual Factor Authentication without an application
5. Finalization of Dual Factor Authentication and login to Pangea CMS

Introduction​

In order to ensure better security of Pangea CMS, a Dual Factor Authentication will be implemented on July 9th, 2019.

This guide will provide a step-by-step set of instructions for users on how to set up Dual Factor Authentication to access Pangea CMS.

Upon the first login to Pangea CMS, the user will be presented with a screen, offering a choice between two ways of confirming their identity - via SMS or via an Authenticator App.

​Setting Dual Factor Authentication using an application

This option allows to set up Dual Factor Authentication using a mobile app. We used Google Authenticator as an example.

First, make sure you have installed and set up an authentication app on your mobile, then you can proceed with adding Pangea CMS to it. Choose the Authenticator application option when offered in order to proceed. Once you click on it – a new image containing a QR code and a 32-digit key will appear.

In your authentication app click on Add button. In Google Authenticator it is a red "plus" button at the bottom right corner of the screen.

​Next, the authentication app will ask if you would like to add a new item by scanning a bar code or by entering a provided key.

If you choose to add a new item using barcode scanner, your phone's camera will activate and you will need to scan the QR code, generated by Pangea CMS.

​Once the code will be scanned - a new item will appear on the list of codes in authentication software. Enter the code generated by the app to Verification Code box in Pangea CMS screen and click on Verify Code button next to it.

If verification was successful, you will see the following screen:

​We strongly recommend saving backup codes, which can be used in case you lose access to your device. Once you are ready - click Save button.

Alternatively, instead of scanning the QR code, you can enter the 32-digit code provided next to it. To do that, when adding a new item in your mobile authentication app, you need to choose Enter a provided key option. The following screen will appear:

​Please fill in both fields:

Account name – this field allows you to decide how the new item will be named in the app.

Your key – in this field you need to enter the 32-digit code, provided next to QR-code.

Once both fields will be completed – click Add button. The new item will appear in your authentication app. Enter the code from the app to the field Verification code on Pangea screen and click on Verify Code button. After that, you will be taken to the page with backup codes, described above.

Setting Dual Factor Authentication using browser extension

There is a possibility to set up Dual Factor Authentication using browser extension. This example of such set up using an extension for Google Chrome browser.

First, you need to install the extension using Google Web Store. You can access it via this link.

Make sure that option "Extensions" is selected at the left of the page. In the search bar enter "Authenticator". We advise to use "Authenticator" extension by authenticator.cc. In order to add it to the browser - click on Add to Chrome.

When the system will ask you for confirmation, click Add extension.

A new icon will appear at the top right corner of the browser.

Click on this icon. In the newly opened window click on Edit button (pencil symbol).

Then click on the big Plus button.

The following dialog window will appear:

In the field Account Name you can assign any name for new account which you are creating. In the field Secret you need to enter (or copy-paste) the 32-digit code, located under QR code generated by Pangea. Once this is done - click Ok.

Now you need to enter the code, generated by the extention to the field Verify code in Pangea CMS. If the code will be accepted you will see the following screen:

​We strongly recommend saving backup codes, which can be used in case you lose access to your device. Once you are ready - click Save button.

​Setting Dual Factor Authentication without application

There is an option to set up Dual Factor Authentication without using third-party apps. If you choose this option, you will receive an SMS-code every time when authenticating your account.

In order to set this method, please choose Text message (SMS) option in the first screen. You will be required to provide your phone number starting with country code (+420 for the Czech Republic) and click the Verify button.

After that you will receive an SMS message with a code which should be entered into a newly-opened Phone number confirmation window:

Once you have entered the SMS code and clicked Verify button, you will be taken to the following screen:

We strongly recommend saving the backup codes, which will be provided to you as they can be used in case you lose access to your device. Once you are ready - click the Save button.

​Finalization of Dual Factor Authentication and login to Pangea CMS

After you have set up Dual Factor Authentication, you will be taken to Pangea login page. After you confirm your login and password, the system will require you to verify your login. At this step, you need to enter a code either from authentication tool or from SMS (depending on which option you chose for yourself).

After successful verification, you will be taken to Pangea CMS.

In case you will face any problems with setting up Dual Factor Authentication – please do not hesitate to contact Pangea Customer Care.​