Two-factor authentication (2fa code) is a method of confirming the user’s access rights to the account of a particular web service using a one-time password system.

Configuring 2FA is about enabling additional factors for login. For example, using SMS, fingerprints using a special device, or a six-digit Google Authenticator (GA) code, which we will discuss in this material.

What is a six-digit GA code is a one-time password that is continuously generated for 30 seconds. During this time, you will need to manage to enter it in the field when entering the exchange or other systems where you have 2FA protection. This six-digit code is generated even when the Internet is disconnected.

There are several options for the practical implementation of this method of protecting an account. In this review, we will look at setting up a dedicated application to generate random Google Authenticator codes. This program was developed to protect Google accounts, but has been widely used on cryptocurrency exchanges and other resources.

Google authenticator is used as the second level of protection when entering your personal account or withdrawing funds from the trading platform, and on some exchanges even when placing orders.

The program installed on your mobile device creates a six-digit digital password every 30 seconds. To confirm your login or other transaction, you must enter it in the request form. If the code has passed the validation check, your access rights have been verified. The procedure for activating Google Authenticator is identical for all web resources.

How do I enable 2FA?

Detailed instructions for activating google authenticator, how the protection scheme works, and what is needed for its functioning. As an illustrative example, we will choose the largest and most popular crypto exchange Binance.

First of all, register on the site https://www.binance.com. In principle, any serious crypto exchange has instructions for setting up two-factor authentication using google authenticator, we will simply outline it in general terms so that novice traders are prepared in advance.

To connect and configure 2fa code, you will need a smartphone or tablet with the application installed and access to your account.

What is Google Authenticator and how do I use it?

Google Authenticator (Google Authenticator) is a mobile application from Google, which is necessary to protect various user accounts (you can connect to Gmail, in various payment systems, in social networks, on cryptocurrency exchanges, etc.). The principle of operation of the application is quite simple: after connecting and configuring it, when entering your personal account on a site where two-step authentication is connected, after entering your login and password, you must also enter a 6-digit code from the Google Authentificator application.

Google Authenticator significantly increases the security of user accounts and protects them from hacking (a six-digit code is generated in the mobile application every 30 seconds and cannot be guessed, stolen or intercepted). The main thing is to learn how to use this application correctly and you will appreciate its advantages. Let’s start with the installation.

How to install and configure Google Authenticator (Google Authenticator) to protect accounts (mail, exchange, wallets)?

Depending on the type of your phone, go to the App Store (for IPhone) or Google Play (for Android phones) in the search bar, enter “Google Authenticator” and install the official Google application on your mobile phone (smartphone).

Next, go to the site where you will connect two-step authentication and enter your personal account, then go to the account settings in the “Security” or “Account protection” section and choose to connect Google Authenticator.

On the 2FA connection page, a QR code and a “Secret Key” will be displayed (be sure to save them, take a screenshot from the site and write down or print on a blank sheet and store in a safe place), through which you can connect two-step authentication (the screenshot above is an example from the Livecoin exchange ).

On a mobile phone in the Google Authenticator application, press the red plus in the lower right corner and in the menu that appears, select “Scan barcode” (meaning a QR code in the form of cubes) or “Enter key” (secret key). It is more convenient to use a QR code, since it is instantly scanned through the phone’s camera and the account protection is immediately connected (in the Google Authenticator application, a window appears with the name of the account, which is protected and a 6-digit key appears, which will need to be entered in the future when authorizing ). We press continue on the site, enter the generated six-digit code from the application on the phone and after that two-factor authorization using Google Authenticator will be connected.

Protection through Google Authenticator can be activated simultaneously in different accounts on different sites and they will all be displayed in a list in the mobile application (different codes will be generated for each account).

Note: if Google Authenticator does not work (the generated six-digit code in the application does not fit when entered on the site during authorization and writes an incorrect code), you must go to the application on your phone, click on the vertical 3 dots in the upper right corner and select “Settings “-” Time correction for codes “-” Synchronize “, after which the application is synchronized with the server and will issue new correct codes to enter.

Requirements

Google Authenticator works on devices running Android 2.1 or later.

App download

Open Google Play.
Search for Google Authenticator.
Download and install the app.

Application setup

Open the verification settings page in two steps and click Android.
Launch Google Authenticator on your phone.
If this is your first time using this app, click the Add Record button. If you want to add another account, select Add account from the application menu.
To connect a phone with an account:
- By QR Code: Select Scan Account Barcode (Label 1). If the Google Authenticator app does not find a barcode scanner app on your phone, you may be prompted to download and install one. To install the barcode scanning application to complete the setup process, select Install (checkmark 2a) and then complete the installation. After installing the software, launch the Google Authenticator software again and point the camera at the QR code on the computer screen.
- Using private key: Select Add account manually (label 1b), and then enter your Google account login email address in the Enter account name field (label 2b). Then, in the Enter key field (label 2), enter the secret key that is displayed on the computer screen. Make sure the key is Time-limited (2d label) and click Save.

To check the operation of the application, enter the verification code from your phone (label 3) on your computer in the field next to Code and click Confirm.
If the code is correct, a confirmation message will appear. Click Save to continue with the configuration. If the code is incorrect, create a new verification code on your phone, and then enter it on your computer.

How do I create a Google Authenticator app password?

An app password is a 16-digit passcode that gives an app or device permission to access your Google account.

If you are using 2-Step Verification and you see an “incorrect password” error when you try to sign in to your Google account, the app password can fix the problem. In most cases, you will only need to enter the app password once for each app or device, so don’t worry about it. memorization.

Click on the “Application Passwords” link in the “Password and Login Method” section of the Google Account Security Settings page. You may be asked to sign in to your Google account.
At the bottom, in the drop-down list, select the application you are using.
Select the device you are using in the next dropdown list.
Click the Create button.
Follow the instructions to enter the app password (16-digit code in the yellow line) on your device.
Click Finish.

How to recover Google Authenticator when changing mobile phone

In the event of a phone change (breakdown, loss), you can access your account on the resource where Google Authenticator was installed after reinstalling the official Google Authenticator application on the new phone and restoring the data in the application using a backup access code (secret key) that you need was saved at the time of connecting the authenticator to protect the account.

It is enough to open the Google Authenticator application on a new phone, press the red plus in the lower right corner and enter the “Secret Key” or scan the QR code that had to be saved when connecting two-factor authentication. After that, the application on the mobile phone will immediately display the password for entering the account to which access was restored.

Important: if at the time of connecting two-step authorization via Google Authenticator on any site you have not saved the secret key or QR code, and then deleted the application on your phone (or the phone was lost or broken), you will not be able to log into your account. The only solution is to contact the support of this site and ask the admins to disable two-step authorization through this application (the support does not always do this or answer such questions, especially on large sites).

How to restore access if the phone is lost

It can happen. Please note that after enabling 2FA, you will not be able to log into your account without knowing the authenticator code.

Therefore, it is very important to store private keys.

Almost all exchanges will provide you with this key when you first set up Google Authenticator or any other 2FA. This private key is very important as it helps you recover your account when your phone is stolen or lost.

What happens if I haven’t copied the 2FA private keys?

In the worst case, you will no longer be able to access your account and will eventually lose all your funds that you held on the exchange.

The smallest thing you can try to do is write to support about this issue. They will help you recover your account, which is not easy and time-consuming.

However, you can install the 2FA app on multiple mobile devices at the same time! You can also print a QR code from the exchange and scan it with a new device.

Always pay great attention to safety. Turn on 2FA and make sure to back up all keys.

We hope you now understand that 2FA connectivity is a must for your online safety. If you found this guide helpful, please share your thoughts and ideas on how you secure your online accounts.

How to disable Google Authenticator?

We enter your personal account on the site where Google Authenticator was connected, go to the account security settings and click disable Google Authenticator. You will need to enter a 6-digit code from the Google Authenticator app, after which it will be disabled.

Note: after disabling two-step authentication via Google Authenticator and reconnecting it, you must re-save the generated QR code and “Secret Key” (the old ones will no longer be active and will not help when restoring access to your account).

Possible problems when migrating Google Authenticator

Before transferring Google Authenticator data to a new device, it is advisable to study the setup instructions. Otherwise, errors and problems will arise during the procedure.

Epilogue

On the one hand, at first, the need to constantly use the phone to log into accounts (especially if there are a lot of them) can be annoying. On the other hand .. What is more important to you – safety or comfort?

By the way, it is not necessary to use Google Authenticator, since there are a lot of 2FA applications, and some companies (like Blizzard) release their own.

In general, our business is to recommend, and whether to use it or not is your business.

Conclusion

In conclusion, it should be said that if you read about a two-factor authentication hack (google authenticator), and such posts on the forums are sometimes found, then most likely this happened due to careless storage of the 16-digit code. The hacker just found it on the PC and used it.

Judge for yourself, is it easy to find the right combination of six numbers in 30 seconds and how much computing power is needed for such a promotion? Configure google authenticator and do not forget about other security rules, especially if you are trading on a crypto exchange.

Date of publication 04.16.

Sources used and useful links on the topic: https://Mining-CryptoCurrency.com/dvuhfaktornaya-autentifikaciya-google-authenticator/ https://www.probivnoy.com/google-authenticator-gugl-autentifikator-kak-ustanovit-vosstanovit- i-otklyuchit.html https://webznam.ru/publ/google/akk/kak_ustanovit_i_nastroit_prilozhenie_google_authenticator/8-1-0-234 https://bytwork.com/articles/google-authenticator-kak-nastroit-2fa-na- primere-kriptovalyutnoy-birzhi https://tarifkin.ru/mobilnye-sovety/kak-perenesti-google-authenticator-na-drugoj-telefon https://sonikelf.ru/ispolzuem-google-authenticator-dlya-zashhity-svoix- akkauntov /

Post source: lastici.ru