Knowledge Base

How Can We Help You?

Search here to get answers to your questions

Popular:

Introduction
Setting Up
Basic Setup
Data Import
Users and Permissions
Printing
Workflows
Email
System Configuration
Data Privacy
Configurations
Advanced
Errors and Reports
Tools
Collaboration Tools
Transactions
Automation
Accounts
Journals and Payments
Billing
Taxes
Pricing
Multi Currency
Retail Operations
Accounting Reports
Deferred Accounting
Subscription
Shareholder Management
Asset
Buying
Module Setup
CRM
Marketing
E-commerce
Website
Employee
Attendance
Recruitment
Training
Employee Lifecycle
Payroll
Employee Tax and Benefits
Performance
Travel and Expense Claim
Gratuity
Fleet Management
Loan
Projects
Project Management
Time Tracking
Quality Management
Selling
Customer Portal
Selling Reports
Stock
Item Variants
Stock Transactions
Serial and Batch Number
Return
Stock Reports
HelpDesk
Education
Student
Admission
Fees
Schedule
Assessment
Assessment Reports
Hospitality
Manufacturing
Production and Material Planning
Non Profit
Membership
Volunteer
Donor
Grant application
Customize BizCentric
Records
Navigation
Custom field
Customize Form
Customize Print Format
Fetch Values
Restrictions
Miscellaneous
BizCentric Integrations
Authentication Integration
Backup Integration
Bank Integration
E-commerce Integration
Shipping Integration
Google Integration
Payment Integration
Telephony Integration
Regional
Reports

Setup Two Factor Authentication

  • 101views
  • February 6, 2024

Setup Two Factor Authentication

Enable Two Factor Authentication (2FA)

Activate two factor authentication by running the command.

bench --site [sitename] set-config enable_two_factor_auth true

Specify the following in System Settings:

  1. The method of OTP validation, which includes OTP App using TOTP with Soft or Hard Token, and Email/SMS using HOTP with Email or SMS.
  2. The expiry time for the QR Code on the server if OTP App is specified.
  3. The OTP Issuer Name.

Upon enabling 2FA in the setup, it’s automatically activated for the “All” role. This means all users, including the Administrator, need to perform a second-level authentication using a token. You can customize this by unchecking the “Two Factor Authentication” checkbox in the “All” role and enabling it for other roles as needed. Remember, 2FA doesn’t apply to web user logins or API logins.

If you’re using SMS authentication, ensure your SMS settings are up to date. If you’re using email, verify that your outgoing email account settings are correct.

When a new user attempts to log in for the first time on a system with 2FA enabled, and OTP App authentication is chosen, an email containing a QR Code link is sent. Scanning this QR Code with an authentication app like Google Authenticator registers the user’s access and begins generating tokens for login.

If email or SMS authentication is used, you’ll also receive notifications.

 

Frequently asked questions (FAQ)

Q. I am unable to login even after following entire process.

Answer: BizCentric utilizes the TOTP-based OTP algorithm, which relies on your device’s system time. Ensure that the device you’re using has the same time set as your BizCentric server.