Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
public:emai:zimbra_2fa [2021-03-02 15:51] – vesely | public:emai:zimbra_2fa [2022-06-27 14:06] – vesely | ||
---|---|---|---|
Line 3: | Line 3: | ||
Two-factor authentication is a technology that provides identification of users with the combination of two different components. | Two-factor authentication is a technology that provides identification of users with the combination of two different components. | ||
- | As the 2nd factor is used the smartphone app - **Google Authenticator **{{: | + | As the 2nd factor is used the smartphone app - **Google Authenticator **{{: |
===== General ===== | ===== General ===== | ||
Line 24: | Line 24: | ||
* Once the user has installed the App, the 2FA wizard will show a unique key that the user must enter in the Smartphone OTP App. | * Once the user has installed the App, the 2FA wizard will show a unique key that the user must enter in the Smartphone OTP App. | ||
+ | |||
+ | <font inherit/ | ||
===== How to Install and Configure an OTP smartphone app ===== | ===== How to Install and Configure an OTP smartphone app ===== | ||
Line 74: | Line 76: | ||
===== How to revoke trusted computer/ | ===== How to revoke trusted computer/ | ||
+ | |||
+ | Once the user trust some computer/ | ||
+ | |||
+ | {{: | ||
+ | |||
+ | ===== Application Passcode (IMAP, ActiveSync) ===== | ||
+ | |||
+ | Clients such as IMAP or ActiveSync do not support the UI flow needed for TOTP authentication. For these users need to generate application passcode. | ||
+ | |||
+ | ==== Application passcodes ==== | ||
+ | |||
+ | * Randomly generated. | ||
+ | * Can be created by giving a label and revoked by their label. | ||
+ | * Changing account password will revoke all application passcodes. | ||
+ | |||
+ | ==== How to create an application passcode ==== | ||
+ | |||
+ | User can create an application passcode by navigating to Preferences > Accounts > Applications and selecting Add Application Code button. User can enter the application name in the Add Application Code dialog and click Next. Application passcode will get generated and it can be used to sign in to your account. | ||
+ | |||
+ | ---- | ||
+ | |||
+ | <font inherit/ | ||
+ | |||
+ | **You must make the __first time__ | ||
+ | |||
+ | ---- | ||
+ | |||
+ | {{: | ||
+ | |||
+ | ==== How to revoke an application passcode ==== | ||
+ | |||
+ | Once the user generates application passcode user can revoke it by navigating to Preferences > Accounts > Applications in Zimbra Web Client. User can revoke this application passcode after selecting the required name in the list. | ||
+ | |||
+ | {{: | ||
+ | |||
+ | ===== Failed Login Attempts ===== | ||
+ | |||
+ | Please note, use of Two-Factor Authentication (2FA) does not prevent account suspension due to exceeding failed login attempts limits | ||