Was this article helpful?
Thanks for your feedback
Two-factor authentication is a way of verifying a user’s identity by using a combination of two different verification methods. It adds an extra layer of security, thereby ensuring that only authorized user(s) can access an account, even if the password has been compromised.
In Contentstack, the two methods used for two-factor authentication are:
- Username and password (normal login credentials)
- One-time security code via Authy app OR one-time security code via SMS
Enable Two-factor Authentication
To enable two-factor authentication for your account, log in to your Contentstack account, and perform the following steps:
- Go to Security
Click on your profile name on the bottom left-hand side corner of the page and select Profile. Then, select Security. - Enter mobile number
Under Security, scroll down to Two-Factor Authentication. Enter your mobile number, along with the country code, in the given fields. Click Enable 2FA.
- Get a verification code
You will be prompted to select one of the two available methods for verifying your identity: Authy App and Text Message.
- Authy App: This method supports verification via Authy mobile app (available for iOS, Android, and Desktop). To use this method, you need to first install the application on your mobile phone or desktop PC, and complete the registration. It will then generate a security token, which you need to enter for verification.
- Text Message: This method supports verification by sending a security code via SMS to the specified mobile phone for enabling two-factor authentication.
Note: The two options are available for verifying your phone number during the enabling process of two-factor authentication. It does not set the selected method as your preferred method for logging in.
- Authy App: This method supports verification via Authy mobile app (available for iOS, Android, and Desktop). To use this method, you need to first install the application on your mobile phone or desktop PC, and complete the registration. It will then generate a security token, which you need to enter for verification.
- Complete 2FA setup
Select Finish. With this step, two-factor authentication is enabled for your account. Subsequently, you will receive a confirmation email at your registered email address.
- Login with 2FA
Log out of your Contentstack account. Log in again by entering your username and password. The next screen will prompt you to enter the security code.
Irrespective of the method selected for verification in Step 3, the login page expects the security code that is visible on the Authy app on your mobile phone. When you launch it, you will see a security token and a timer to indicate the time (in seconds) within which the token will expire. Enter this token on the login page and you will be logged in immediately.
In case you do not have access to the Authy app, you can log in using an SMS verification - but please note this isn’t the preferred method as it’s not as secure. To use this workaround, click the ‘Send me an SMS’ link located below the input field available for entering the security code.
Reset Phone Number
Once two-factor authentication is enabled, the login system (via either Authy or SMS) uses your registered phone number to verify your identity. Consequently, if you do not have access your registered phone number (if you changed it or otherwise), it won’t be possible to log in. Thankfully, Contentstack has a way around this.
Here’s the process to change your verified phone number:
- Go to the "Two-Factor Authentication" page.
- Click the "Reset your phone number" link visible beside the phone number field.
- Enter the new number in the phone number field.
- Select a method to verify your phone number, and perform the verification process as you normally do while enabling two-factor authentication.
Disable Two-Factor Authentication
You can disable two-factor authentication in a few steps. However, it is important to note that doing this will remove the additional layer of security from your account. Contentstack highly recommends keeping it enabled.
Here are the steps for disabling two-factor authentication:
- Go to the "Two-Factor Authentication" page.
- Click the "Disable 2FA" link located below the phone number fields.
- On the dialog box that appears, confirm by clicking on "Disable."
Once two-factor authentication is disabled, you will be able to log in to your account by simply entering your registered email address and password.
Additional Resource: It is advisable to change your password regularly to ensure account security. Here are some password requirements that you need to follow. To know more about password security, refer to our Password-related Security section.
