Two-factor authentication, or 2FA as it's commonly abbreviated, adds an extra step to your basic login procedure. Without 2FA, the password is your single factor of authentication: you enter your username and password, then you're done.
With 2FA, you log in to the Webmail by entering your username and password and the six-digit code provided by an app installed on your smartphone.
After the latest update of the GroupOffice Webmail, you will be prompted to enter the 2FA code in a new pop-up window.
When logging into the User Panel, if you have 2FA enabled for your mailbox, you must add at the end of the password the 6-digit code provided by the app on your phone.
For example, if your password is T9D3K!px and the 6-digit code is 189 145, you must enter T9D3K!px189145 in the login form of the User Panel.
¶ 1. Enable 2FA for your mailbox
What you need:
- a smartphone with a 2FA App installed (OTP / 2-Step Verification / 2-Factor Authentication), such as Authy or Google Authenticator.
To enable 2FA for your e-mail address:
- Log in to the User Panel
- From the menu, go to 2-Factor Auth
- Update the dropdown Status to Enabled. Click on the Save button.
- Recheck the requirements: have a 2FA App installed on your phone, such as Authy or Google Authenticator
- When ready, click on the Next button
- Scan the QR code with the installed 2FA App and fill in the generated six-digit code in the Challenge input field.
- Click on the Save button before your token expires. It is always better to wait for the app to generate a fresh token, so you have enough time before it expires.
- You have enabled 2FA, and you will be prompted to fill in the token every time you log in using Webmail.
¶ 2. Disable 2FA for your mailbox
To disable 2FA for your e-mail address:
- Update the dropdown Status to Disabled. Click on the Save button.
- Insert the token from your 2FA App (such as Authy or Google Authenticator) in the Challenge input field.
- Click on the Save button before the token expires. It is always better to wait for the app to generate a fresh token, so you have enough time before it expires.
- After you see the confirmation message that the 2FA was disabled, you can delete the entry from your 2FA app.
