Second Factor Authentication reference
Here you can find the settings contained on the Second Factor Authentication page in the Admin Console.
Fastpath:
For more information about 2FA, see Two-factor authentication overview and Setting up two-factor authentication.
| Parameter | Description | Default setting |
|---|---|---|
| Second Factor Authentication | Indicated if the two-factor authentication is enabled. Available options are:
|
Disabled |
| Time stamp sec | The time step of the TOTP 2FA algorithm, in sec. | 30 |
| Window size | The number of periods the verification code is considered valid for the TOTP 2FA algorithm. | 1 |
| Code length | The length of the verification code. | 6 |
| Reset device token expiration time | The lifetime of validation tokens when restarting a paired device, ms. A user must pass all authentication steps during this period | 180000 |
| Key representation | The algorithm which is used to encrypt the key. Available options are BASE32 or BASE64. | BASE32 |
| Issuer | The representation of the issuer in authenticator apps. By default, the value is empty and the community name is displayed. For more information, see Renaming root space. | <empty> |
| Parameter | Description | Default setting |
|---|---|---|
| User device Reset allowed | Indicates if users are allowed to change the device used for authentication
themselves. This adds the Two-factor Authentication tab on the Preference page.
Available options are:
|
Enabled |
| Parameter | Description | Default setting |
|---|---|---|
| Basic Auth enabled | Indicates is the basic authentication method for API requests is enabled.
Available options are:
|
Disabled |
| Parameter | Description | Default setting |
|---|---|---|
| Group ID | User groups for which 2FA is enabled. Available options are:
|
-1 |