Continue reading " />

Help Center / Enable 2-Step Authentication

2-Step Authentication adds an extra layer of protection to your email account. It ensures that only YOU can access your account, even if someone knows your password.

How it works

When your account is protected with 2-Step Authentication, logging in to your webmail requires two methods of authentication: your email account password and a verification code that’s only available to you.
 
2-Step Authentication also ensures hackers can’t access your account via third-party applications. In order to configure your email account in third-party applications (including email clients like Outlook, eM Client, Apple Mail, etc.), you must use a unique “Application Password” that is only accessible by logging into your account online.
 

Configuring 2-Step Authentication

You can configure 2-Step Authentication from within your account settings (under SETTINGS > ACCOUNT > 2-STEP AUTHENTICATION > [ENABLE]).
 
The first step in configuring 2-Step Authentication is choosing your preferred verification method: Authenticator App or Recovery Email Address.
 
Retrieve code via Recovery Email Address
Each time you log in, the verification code will be sent to an alternative email address.
 
    1. Select Recovery Email Address from the Verification Methods dropdown.
    2. Enter and confirm the Recovery Email Address that will be used to retrieve the verification code. (This email address will automatically be used as the Recovery Email Address used for resetting your account password as well.)
    3. Click Next.
    4. Wait a moment for the verification code to be emailed. Then enter the 6-digit verification code.
    5. Click Check to confirm the verification code and complete the 2-Step Authentication setup.
 
Retrieve code via Authenticator App
Each time you log in, you’ll retrieve the verification code from an authenticator app.
 
    1. Install an authenticator app, such as Google or Microsoft Authenticator, Authy, or LastPass on your phone or computer. (In this article, we’ll demonstrate how to set up 2-Step Authentication using Google Authenticator on your mobile device.)
    2. Select Authenticator App from the Verification Methods dropdown.
    3. Enter and confirm a Recovery Email Address that will be used as an alternative method to retrieve the verification code. If your authenticator app is not accessible, the verification code will be sent to this address instead. (This email address will automatically be used as the Recovery Email Address used for resetting your account password as well.)
    4. Click Next. A QR code will appear on the next page.
    5. Open the Google Authenticator app. Click “BEGIN SETUP” or use the plus (+) icon to add a new token.
    6. Select Scan QR Code and use your phone’s camera to scan the code that’s displayed in your webmail. A new token will be added to Google Authenticator.
    7. Enter the token’s 6-digit code into the field in your webmail.
    8. (If you can’t scan the QR code, click on “Can’t scan the QR code?” in your webmail. In the Authenticator app, choose to create a new token by Manual entry. In the Account field, enter a token descriptor, such as the username of your account. In the Key field, type in the secret key that’s displayed in the webmail. Then enter the token’s 6-digit code into your webmail.)
    9. Click Check to confirm the verification code and complete the 2-Step Authentication setup.
 

Logging in with 2-Step

To log in to your webmail, enter your email address and password. Then enter the 6-digit verification code that’s sent to your email or displayed in the authenticator app’s token.

Configure Third-party Applications with App Passwords

Note that once 2-Step Authentication is set up for your account, you will also need to re-configure any third-party applications or email clients using the “Application Passwords” that are automatically generated and displayed in Account Settings. Be sure to use the correct password for the corresponding protocol.

Posted in: Email, Web-based Mail

Comments are closed.