info_i_25x25.png Due to unforeseen weather conditions we are experiencing higher chat wait times. Remember you can also submit a ticket and one of our support representatives will get back to you as soon as possible. We apologize for the inconvenience.

How to Enable Two Factor Authentication


Overview


This article describes the steps on how to enable and disable Two Factor Authentication (2FA). It is also important to create backup codes and keep them safe in case you need to reset your 2FA.

NOTES & REQUIREMENTS:
Some older versions of UBNT services are not 2FA-ready; and when you enable 2FA it will be enabled for all UBNT services. In these cases, when you are not asked for the 2FA token and you are using your ubnt.com account, you must provide it anyway by typing in your password, a vertical bar (|), and the 2FA token in the password field. For example, for an account with the following:

 

password: 2931utkyu
2FA token: 987 099

 

You would type the following in the password field: 2931utkyu|987099

 

As always, we recommend updating to the newest version available to experience our newest features. 


Table of Contents


  1. Introduction
  2. How to Enable 2FA
  3. How to Create Backup Codes
  4. How to Disable 2FA
  5. How to Access a Locked Out Account

Introduction


Back to Top

Two Factor Authentication, also known as 2FA, is a two step verification process that requires more information in addition to the usual username and password. This extra piece of information is something only the user will know or have physically with them, like a token sent to a mobile app, for example. It is very important to create backup codes the moment you enable 2FA on your account. 


How to Enable 2FA


Back to Top

1. Go to https://account.ubnt.com and sign in.

2. Select 2FA from the menu. You will see a Secret Code under the barcode.

ATTENTION:
Save this Secret Code somewhere safe. You can use this to enable your account again if you were to get locked out (if for example you change mobiles or delete the authenticator by mistake).

3. Follow the instructions on the 2FA section to scan the barcode with Google Authenticator. 

Screen_Shot_2017-10-02_at_4.40.24_PM.png

4. Scan the QR code. If you already have Google Authenticator, tap the sign, select scan barcode and scan the QR code shown on https://account.ubnt.com.

5. Enter the 6-digit authentication token provided by Google Authenticator.

6. Click Enable 2FA.


How to Create Backup Codes


Back to Top

It is extremely important to create a set of backup codes the moment two factor authentication is enabled. These codes will allow you to unlock your account to disable 2FA if you were to somehow lose access to your authenticator app (if say you lost your mobile).

1. Access your account settings, by logging in to https://account.ubnt.com, providing username, password and the 6 digit authenticator token.

2. Go to the 2FA section.

2FA_Section.png

3. Once again you will be prompted to provide another 6 Digit Token, and click on Generate New Backup Codes

ATTENTION: Generating new backup codes makes any previously generated ones obsolete.

4. You will be given a list of 10 backup codes, write them down somewhere safe. If there's a possibility someone has gained access of your codes, generate new ones to make those compromised ones obsolete.


How to Disable 2FA


Back to Top

1. Go to https://account.ubnt.com and sign in.

2. Select 2FA from the menu.

Screen_Shot_2018-02-12_at_12.34.31_PM.png


4. Use Google Authenticator on your mobile to get a token to insert in the field provided. Click Disable 2FA.


How to Access a Locked Out Account


Back to Top

If you are locked out of your account because you changed mobiles, deleted the authenticator app by mistake or lost your phone, you can get access to your account once more with one of these methods.

Reset 2FA Using Backup Codes

1. Go to https://account.ubnt.com, enter your username and password as usual, and when prompted for the 6 Digit Token, click on Reset 2FA instead.

reset.png

2. Now just paste one of the backup codes you previously saved and click the Reset 2FA button.

3. Two factor authentication is now disabled. You can log in once again and enable it once more. Remember to create a new set of backup codes if your previous set might have been compromised.

Access Account with Secret Code

The Secret Code appears only once, when you first enable 2FA on your account (see How to Enable 2FA). You can use this code to connect your existing account with a newly installed authenticator app. Do so by following these steps:

1. Open Google Authenticator and click the + to add another account.

2. Instead of selecting Scan barcode as you would have to set up a new account, select Manual entry.

3. Provide your UBNT account in the space provided and your Secret Code in the space provided for Key.

4. Click the checkmark in the upper-right hand corner to save.

NOTE:
Other possible issues and solutions are discussed in this Google 2-Step Verification Help articleIf you have lost access to your account, but did not generate backup codes or save the Secret Code when you first enabled 2FA, and none of the solutions in the above link helped, please contact [email protected].