Zum Inhalt

2-factor authentication

With this plugin, you can additionally secure the login of your account by requesting a changing login code that is generated on your smartphone or tablet after the password request. The only exception to the code entry is when you log in again after a session has expired in a browser window in which the CCM19 backend is still open.

Screenshot-2FA-Login.jpg

The plugin must be activated in the on-premise editions in the plugin management by the administrator and enabled for users.

Activate functionality

Log in to CCM19 and open the "Account settings" via the user menu at the top right.

Click on "Activate 2-factor authentication with a smartphone app" at the bottom. If this button is missing, the plugin is not active or has not yet been activated for you.

Screenshot-Account.jpg

After you have clicked on the button, a configuration area opens with a randomly generated key and a QR code.

Screenshot-2FA-Settings.jpg

Install an authentication app on your smartphone if you do not already have one. A selection of supported apps is linked in the introductory text of the form.

The process is demonstrated below using the "Aegis Authenticator" app (available in the Google Play Store and the FDroid Store). The process is largely comparable in other apps.

Open the authentication app on your smartphone and scan the QR code. If you have opened the CCM19 backend directly on your smartphone, double-tap the QR code instead.

Screenshot-App-Add.png

The app should automatically import the necessary parameters by scanning the code. If this does not work, you can also transfer the data manually from the area to the left of the QR code.

Finally, press "Save". You should now see a 6-digit code that changes every 30 seconds.

Screenshot_1642005762.png

Type the generated code into the "Login code" field and then click on "Activate". You have approx. 30 seconds to click on the button after the code has changed in the app.

Screenshot-2FA-Settings-2.jpg

If the code was entered correctly, a message appears: "2-factor authentication successfully activated."

You will then need a current login code from your app for each login in CCM19.

Deactivate functionality

Log in to CCM19 and open the "Account settings" via the user menu at the top right.

Click on "Deactivate 2-factor authentication with a smartphone app" at the bottom.

Screenshot-2FA-Disable.jpg

Enter a current login code from your app and then click on "Deactivate".

If everything went well, you will see the message "2-factor authentication successfully deactivated." Now you no longer need a login code to log in to CCM19.

What can I do if I no longer have access to the app?

If you can no longer create login codes, use the "Forgot your password?" function in the CCM19 login window.

You will then receive an e-mail. Follow the instructions in the email to set a new password. When you receive the new password, the 2-factor authentication will also be reset.