public:emai:zimbra_2fa

This is an old revision of the document!


Zimbra - Two Factor Authentication (2FA)

Two-factor authentication is a technology that provides identification of users with the combination of two different components.

As the 2nd factor is used the smartphone app - Google Authenticator

Users can see the option in User Web Client (https://mail.cerge-ei.cz) under Preferences > Accounts > Account Security, called Setup two-step authentication

After the user clicks on the Setup two-step authentication link, the configuration process will begin.

  • At the begining the password to email account is required.
  • The next step retrieves the other component the user must have, in this case an app in the smartphone. The Two Factor authentication wizard will show a Wiki link with the OTP Apps Zimbra recommends to use.
  • Once the user has installed the App, the 2FA wizard will show a unique key that the user must enter in the Smartphone OTP App.

In this example, Google authenticator is used, but please visit our Wiki where you can find other options. In the App Store or Play Store, search by Google authenticator, then click Install.

Once the app is installed, open it, and click Begin Setup

The app will ask if you want to configure a Manual entry or Scan a barcode. Zimbra Collaboration supports only manual entry for now.

To configure the App, the users must add an email address and the unique Key from the Zimbra Web Client.

All done! Now the app is configured and will show a 6-digit code that changes after 15 seconds.

Once the user has the App configured and showing the 6 digit code, the user can enter the Code in the wizard window and click Next

The two-step authentication feature is now enabled, and the user will be prompted for a code in each new Browser, smartphone, computer, or app where he or she tries to access the account.

In the users’ Preferences > Accounts > Account Security (if the Admin has enabled these options under the COS), the user will see more options like the one-time codes, Trusted devices, and Applications:

If the user now goes to another Web Browser, computer, smartphone, or if he or she tries to configure Zimbra Desktop, the user will successfully pass the two-factory authentication. For example on the Web Client: One-time Codes

  • /var/www/html/dokuwiki/data/attic/public/emai/zimbra_2fa.1614700174.txt.gz
  • Last modified: 2021-03-02 15:49
  • by vesely