Team: Huntress EDR
Product: Duo Mobile, Google Authenticator, Backup Codes
Environment: Huntress.IO portal
Summary: The Huntress.IO portal requires the setup of at least one two-factor authentication method via an app such as Duo Mobile or Google Authenticator. Backup codes are generated in the event your multi-factor authentication method is lost.
Two-factor authentication provides an additional layer of security to your account. Not only will an attacker need to know your password (hopefully they don't know it), but they will also need to complete the second-factor check. Traditionally the second factor requires "something you have" to satisfy the check. This could be many things from a mobile phone to a hardware token. Without this physical device, even an attacker who has your password won't be able to access your account.
Setup Two-Factor Methods
Huntress supports several two-factor methods and allows you to choose which means you would like to enable for your account. It's possible to enable multiple two-factor methods, which will enable you to use the most convenient method depending on where/when you're logging in.
Please note that SMS is NOT a supported method for Two-Factor Authentication and cannot be configured to use with your Huntress.IO account.
Enabling Two-Factor For Your Account (Backup Codes)
Before you can enable any of the specific two-factor methods, you'll need to generate backup codes that can be used to recover access to your account should you ever lose your other second factors.
The following steps will guide you through generating backup codes and enabling two-factor authentication for your account.
- After logging in to your Huntress account, click the user menu and select "Preferences."
- Click the "Setup" button to set up two-factor authentication.
- The system will automatically generate backup codes for you. After downloading, printing, or copying your codes, click "Save" to continue.
Note: Make sure to store these Codes in a secure location that gets backed up.