Two Factor Authentication

Two-factor authentication(2FA) is implemented in webmail to protect your account and email from abuse. Here, the first authentication factor is your password, and the second is an authentication code using Authenticator App. Before proceeding, download a Authenticator App ( video tutorial available).

Authenticator apps are available for all operating systems, including Linux, Windows, Android, and iOS. Browser plugins are also available in popular web browsers such as Chrome and Firefox. Few of the authenticator apps are listed below; you can choose your preferred one(s).

$\bullet$ Android App

Google, Microsoft, IITK, Zoho.

$\bullet$ Microsoft Windows App

App from windows store, For old Windows OS(not signed by windows store).

$\bullet$ Linux App (Debian13 build)

Linux (use chmod +x before running the file)

$\bullet$ Ios App

Google

Please note the following important points.

• Before enabling 2FA, you should have your authenticator app ready to get the authentication code. Without this you will not be able to log in.
• Important: If you lose your account data from authenticator app, you will be unable to log in. Contact the mail help desk. Do not share the App secret code with any one.
• If you have multiple accounts, scan each account's QR codes separately.

Follow the below screenshot (Figure 1.3.14)after login to your account in webmail interface . Follow the sequence of steps highlighted in Figure 1.3.14.

Figure 1.3.14: Enabling 2FA after first login

Please note the orange numbering in the above figure, and the explanation of each point is given below.

1. Go to settings.
2. Click on 2-Factor Authentication.
3. Read this.
4. Link for documentation and user manual. Go through it if you have difficulty.
5. Click to start the process.
6. Scan the QR with authenticator app. or If you can not scan QR use step 7 below.
7. Copy the secret to authenticator app. This is required if step6 above did not work, else skip this step.
8. Get the 6-digit code from the authenticator app (check video link if you have difficulty here) to verify.
9. This is an optional but recommended step. These are four recovery keys to use as OTPs when you cannot access your phone. You can keep them stored in a password manager for safekeeping. Once you use a key, it can not be used again.
10. Save to complete the activation of 2FA.

For IoS you can use following steps to download and use the authenticator app.

• Open Apple “App Store”
• Search for “Authenticator”
• Download Google, Microsoft or Zoho Authenticator.
• Click on “Add New” to link your 2FA account
• Add the 32 digit secret key manually or Scan the QR code.
• Linked account will display 6-digit PIN to access your Webmail.