How can 2 factor authentication be achieved for Hosting Controller panel users?

How can 2 factor authentication be achieved for Hosting Controller panel users?
 
Two Factor Authentication can be achieved through the following in HC:
  • Email
  • Google Authenticator
  • SMS Gateway
Configurations required for all the 2 FA mechanisms
The following two steps will be required during configuration for all the three types of 2FAs:
 
  1. 2FA Settings at Panel Configuration Level (This configuration is required only once under Global Admin user of HC)
     
  2. 2FA Settings at User Configuration Level (This setting will be configured on all user levels in HC)

1. Setting at Panel Configuration Level:
This setting is enabled at Global Admin level, where owner of the HC Portal decides what types of Two Factor Authentications will be available for its customers. For example if you wish all customers to use 2FA through Email and Google Authenticator then navigate to menu: Configurations >> Two-Factor Authentication. This way 2FA only through Email and Google Authenticator will be allowed for customers. If you want that customers should be able to select 2FA through SMS then Global Admin will enable SMS option in the below screen.
 
 
2. Settings at User Configuration Level:
These configurations are required for all the three 2FA types (Email, Google Authenticator and SMS). The steps for each type are as follows:
 
  1. Steps for Configuring 2FA through Email
If this type of 2FA is enabled then as HC panel users try to login they are prompted to verify the OTP( One Time Password ), sent on the email address configured in their Personal Profile. Following are the steps for configuring 2FA through Email.
 
  • Open 2FA User Configurations in HC. This setting is also available at customer level.
            
            
  • Select 2FA via Email. Upon clicking Send Verification Code, a code will be sent to the Email address specified in User Profile. Place the code in Verification Code field and your user login will be secured using 2FA via Email.
 
  1. Steps for Configuring 2FA through Google Authenticator
If this type of 2FA is enabled then as HC panel users try to login they are prompted to verify the OTP (One Time Password), sent on their Google Authenticator Mobile App. Following are the steps for configuring 2FA through Google Authenticator.
 
  • Open 2FA User Configurations in HC. This setting is also available at customer level.
                        
 
  •  Select 2FA via Authenticator.
          
         
  • To enable Authenticator App, either scan the bar code which will send a verification code on your Google Authenticator Mobile App. Place this verification code and click save button or copy the key value mentioned on the page and specify in Verification Code field to save Google Authenticator as 2FA for your user account.
  • Whenever you login into HC with your credentials, a separate code will be sent to Google Authenticator app, as an additional authentication.
 
  1. Steps for Configuring 2FA through SMS
If this type of 2FA is enabled then upon providing credentials to login into HC, an SMS is sent to the phone number specified in the User Profile. Currently Twilio SMS Gateway is integrated with HC. If you wish to integrate your own SMS Gateway, consult the link. Following are the steps for configuring 2FA through Twilio SMS Gateway.
  • Signup for Twilio account from this URL: https://www.twilio.com/try-twilio . Signup using your valid phone number.
  • Login into Twilio Portal and generate a phone number from User Dashboard. The next screen will display phone number, Account SID, and Auth Token. Copy these settings as they will be specified in HC.
            
 
  • Open HC, and specify your local number, used to signup with Twilio, in your user Profile under phone number field.
  • Enable 2FA Settings at Panel Configuration Level and select option via SMS ( Using Twilio ) as mentioned above in step # 1. This will ask you to provide 3 values of Twilio Generated Number, Account SID, and Auth Token which you saved earlier.
            
            
  • Open 2FA User Configurations in HC.
            
 
  • Select 2FA via SMS (Using Twilio).
                       
 
  • Click Send Verification Code button. An SMS will be sent with a code to your mobile number configured in your User Profile. Specify this code in above screen and click on Save button.
  • That’s it. Whenever you login into HC, an SMS code will be sent to your mobile number which will be required for login.

Add Feedback