Two-Factor Authentication

This article is solely for customers whose accounts have not been upgraded to use Identity. If your customer account uses Identity, then you should manage your multi-factor authentication configuration from within the Identity dashboard.

Two-factor authentication (2FA) is an additional security requirement that your CDN administrator may require for MCC access. This type of authentication requires a time-sensitive tokenA 2FA token expires after a minute. This is a security measure to prevent an unauthorized user from authenticating to your account through the use of an old 2FA token. when logging into the MCC. This token, which confirms your identity, may be generated through either of the following methods:

• Google Authenticator

  Google Authenticator continuously generates a time-sensitive 2FA token.

• SMS Messaging

  A text message will be sent to your cell phone whenever you are challenged to provide a 2FA token.

If you are prompted to configure 2FA, then it is required for your account. Access to the MCC will only be granted after successfully setting up 2FA.

If you do not wish to provide a 2FA token each time that you log in, you may choose to remember the current computer/device for a specific time period. During the specified time period, you will not need to provide a 2FA token after logging into the MCC on that computer/device.
Learn more.

Learn how to update your 2FA configuration.

Google Authenticator

Google Authenticator is a software application that generates tokens through which you can verify your identity to Google services and third-party applications (e.g., MCC). This software application can be installed on your desktop, Android cell phone, or iPhone/iPad devices. Download links are provided below.

Application	Description
Google Authenticator	A mobile app for Android devices.
Google Authenticator	A mobile app for iPhone and iPad devices that requires iTunes.

Once you have installed the desired Google Authenticator application, you will need to create an account that will generate 2FA tokens for your MCC user account.

Creating an account requires:

1. Assigning a name to the account. This simply allows you to identify the purpose of the 2FA tokens generated for that account.

2. Providing the secret key associated with your MCC user account. This secret key will only be displayed under the following circumstances:

   • Initial Setup: The secret key will be displayed the first time that you set up 2FA authentication on your account. It is displayed after you select Google Authenticator as your preferred method for generating tokens.
   • 2FA Reset: The secret key will be displayed upon resetting your 2FA configuration.

If you are using a mobile app, then you may create an account by scanning a QR code when using Google Authenticator.

Once you have created an account, Google Authenticator will provide a 2FA token. You will need to provide this six digit code to verify your identity in the MCC.

To set up Google Authenticator

1. Log in to the MCC.

2. On the first step of the Two Factor Authentication wizard, click Google Authenticator and then click Proceed.

   The wizard will display links to Google Authenticator along with your unique secret key

3. Perform the following steps:

   1. Download and install Google Authenticator.

   2. Perform either of the following steps:

      • Create an account by scanning the QR code.

      • Create an account by specifying a name (e.g., MCC) and providing the secret key.

        

        You will no longer have access to the secret key upon proceeding past this step. Please double-check the secret key before proceeding to the next step.

      Upon creating the account, Google Authenticator will generate a 2FA token.

4. From the MCC, proceed to the next step by clicking Confirm.
5. In the Enter verification code option, specify the token generated by Google Authenticator.
6. Click Verify.

SMS Messaging

Text messages containing 2FA tokens can be sent directly to your cell phone or messaging device via SMS. Setting up SMS messaging is simple and does not require the installation of a software application. Simply provide the phone number corresponding to your cell phone or messaging device. A text message containing a 2FA token will be sent to your phone.

Format:

• US-Based Phone Numbers:

  Format:

  Area_Code-Phone_Number

  Sample Phone Number (Los Angeles, United States):

  310-555-1212

• Outside of the US: For mobile phones outside of the United States, please use the following format:

  Format:

  011-Country_Code-Area_Code-Phone_Number

  Sample Phone Number (Rio de Janiero, Brazil):

  011-55-21-555-1212

Disclaimer: Standard text messaging rates may apply. We are not responsible for any fees that your cellular network carrier may charge for message transmission and delivery.

To set up SMS Messaging

1. Log in to the MCC.
2. On the first step of the Two Factor Authentication wizard, click SMS Messaging.
3. In The phone number attached to your account is option, specify the phone number for the desired mobile device and then click Validate this number.

4. In the Phone number validation dialog box, type the 2FA token sent to your mobile device and then click Next.

   

5. From the MCC, click Confirm. A new text message will be sent to your mobile device.
6. In the Enter verification code option, type the new 2FA token sent to your mobile device.
7. Click Verify.

Updating Your Mobile Phone Number

2FA may be configured to send a token to your mobile device via SMS messaging as it is needed. The phone number to which the text message will be sent is defined in the Mobile option on your profile page. If you would like to tokens to be sent to a different phone number, then simply update the Mobile option.

Learn about phone number format.

Updating Your Two-Factor Authentication Configuration

Perform any of the following changes to your two-factor authentication (2FA) configuration from your profile page:

• Switch the method used to generate tokens.
• Update the phone number of the mobile device associated with your account.
• Clear the 2FA token from the current computer. This will require your provide 2FA verification upon your next log in to the MCC.

Switching Token Generation Method

The method used to generate tokens can be updated at any time by resetting your 2FA key. Upon doing so, you will be prompted to redefine your 2FA configuration.

Do not reset your 2FA key as a means to change the phone number to which tokens will be sent. Learn more.

To switch your token generation method

1. Navigate to your profile by clicking View Profile from the user settings menu.

   

2. Click Reset Two-Factor Authentication Key.

3. Choose whether to generate tokens via:

   • Google Authenticator: Perform the To set up Google Authenticator procedure.

   • SMS messaging: If a mobile phone number has not been previously defined for your account, then perform the To set up SMS Messaging procedure. Otherwise, perform the following:

     1. Click Confirm to verify the phone number listed in the The phone number attached to your account is option. A new text message will be sent to your mobile device.
     2. In the Enter verification code option, type the new 2FA code sent to your mobile device.
     3. Click Verify.

Remember this Computer FAQ

Frequently asked questions about the Remember this computer option are provided below.

What is the purpose of the Remember this computer option?

It allows you to designate the current computer as a secure location for accessing the MCC. As a secure location, you will not be prompted to provide a 2FA token until the specified number of days have elapsed.

Another user will gain access to my computer. What should I do?

You should revoke automatic 2FA verification from that computer. If you still need to use that workstation, make sure to clear the Remember this computer option whenever you log in to the MCC.

How do I revoke automatic 2FA verification?

You may revoke automatic 2FA verification at any time by clicking Forget this computer from your profile page.