Integrator Permission levels require a two-factor authentication app installed on a mobile device (phone or tablet) to provide an additional layer of security when logging in to PDK.io or to the Manage Access feature of the PDK Access App. This prevents unauthorized access to the account if the password is compromised.
ProdataKey recommends using the Google Authenticator app, which must be installed on a mobile device. This app is available from the App Store or Google Play Store.
Initial setup of Two Factor Authentication (2FA)
After receiving the initial email invitation and completing your personal information entry, you will be prompted to enter your cellular/mobile phone number for verification. This number will be used to set up Google Authenticator and serve as one of the multi-factor authentication methods. Please note that the phone number entered here MUST be a cellular/mobile phone capable of receiving SMS/Text messages.
After entering the cellular/mobile phone number, selecting the Send Code button will generate and send a six-digit code to enter in the Code field in the next window.
After verifying the code, a page with a QR code will be displayed. This QR code needs to be scanned by the Google Authenticator app; do not use a standard QR code scanner, as it will not generate the required time-based one-time passcode.
NOTE: The QR code in the image below has black bars added, rendering it unscannable. The QR code provided by the setup process will look like a normal QR code.
In the Google Authenticator app, tap the + in the lower-right corner, then tap 'Scan a QR code'. Using the onscreen reticle, scan the QR code.
Alternatively, if the provided QR code cannot be scanned, tap the + in the lower-right corner of Google Authenticator, then tap 'Enter a setup Key'. Enter a name for the Authenticator account, select the 'Text Code' link next to the QR code, enter the generated alphanumeric string into the 'Your key' field, and choose 'Time Based' for the Type of key and tap the 'add' button.
Once the QR code has been scanned by the Google Authenticator app, a new entry in the Authenticator app will be added and display a time-limited one-time passcode, which is a six-digit code with a timer next to it showing how long before the displayed code will no longer be usable. This passcode must then be entered in the field below the QR code.
Resetting Two-Factor Authentication
If the generated time-limited one-time passcodes are no longer accepted or if the Authenticator needs to be added to a new cellular/mobile device, this can be done easily. If the time-limited one-time passcode is not working in the Authenticator app, delete the item from it.
First, the Partner will need to select the profile icon in the upper-right corner of the window, highlighted in the black box in the image below.
Selecting this icon opens a pop-up menu, where the Partner must select the Account Settings option.
Doing this will open the User Profile window, where the Partner can select the Manage Two-Factor Authentication button to view these options.
In the Two-Factor Authentication window, select the Set Up button to generate a new QR code. Follow the steps above to scan the QR code and add the time-limited one-time passcode generator to the Authenticator app.
Comments
2 comments
I would suggest adding how to disable a particular 2FA method from an account.
Hello Stu,
For Integrator level Permissions we require 2FA to be enabled and the use of 2FA can't be removed from Integrator level permissions.
Please sign in to leave a comment.