Skip to main content

Two-factor authentication (2FA) settings in OneView

Updated: 

Two-factor authentication (2FA) is a dual security feature to authenticate users. The Cybersecurity & Infrastructure Security Agency (CISA) recommends enabling 2FA to protect your account if your login credentials are compromised. This article details the 2FA settings in OneView and how to reset 2FA if needed.

A mobile device with a camera and an authenticator app is needed to set up 2FA. Supported authenticator apps:

Require 2FA

Global Administrators can enable a global setting that requires all users to set up 2FA upon their next login. This ensures users are securing their accounts with 2FA. 

  1. Go to Configure > Users.
  2. Click Two-factor authentication.
  3. Toggle on Require two-factor authentication for all users.

Manual set up

When the setting to require 2FA is disabled, users can set up 2FA in their profile settings. At the top right, click the display name > Profile. In the Security tab, toggle Enable Two-factor Authentication and follow the steps to set up 2FA. 

Recovery code

Global Administrators can enable a global setting that allows users to authenticate using a recovery code sent by email. This setting must be enabled in the console before using a recovery code. A recovery code is helpful in cases where a mobile device was lost or replaced. Enabling this setting could allow threat actors to bypass 2FA if the user's email account is compromised.

  1. Go to Configure > Users.
  2. Click the Two-factor authentication button.
  3. Toggle on Allow the recovery code to be sent via email.

Once the setting is enabled, users can request a recovery code.

Request a recovery code

  1. Go to the OneView login page.
  2. Enter the credentials to log in.
  3. Click Request recovery code.
  4. Check the email for the recovery code.
  5. Enter the recovery code in the verification screen and click Submit.

Reset 2FA

We recommend adding a second Global Administrator to OneView if the first Global Administrator has to reset 2FA. If the recovery code option is disabled and a user must reset 2FA, have another Global Administrator follow these steps. 

  1. Click Configure > Users.
  2. Locate the user and click the ellipsis icon 2022-01-04_17-40-44.png.
  3. Click Reset 2FA.

If there are no other admins to reset 2FA, contact Support.

Still have questions?

Support is available via chat, phone or by creating a ticket. You can also use our virtual assistant for guided assistance.

Learn more