XF 1.5 Two Step Verification Shows Up - How to Turn it Off

nassella · Sep 15, 2016

Suddenly this showed up

"You must enable two-step verification to continue.

Two-step verification increases the security of your account by requiring you to provide an additional code to complete the login process. If your password is ever compromised, this verification will help prevent unauthorized access to your account."

I don't know if I accidentally turned it on but can someone tell me how to turn it off?

Paul B · Sep 15, 2016

You can disable it in your account preferences, it may also be set in the user groups permissions (Require two-step verification), and there is also an option to force it when accessing the ACP.

nassella · Sep 15, 2016

Brogan said:
You can disable it in your account preferences, it may also be set in the user groups permissions (Require two-step verification), and there is also an option to force it when accessing the ACP.

Thanks - where do I find account preferences?

Liam W · Sep 15, 2016

It's not that. That message is shown when permissions are set to force enabling of Tfa.

One of your user groups has the force Tfa permission active.

Did you grant all permissions on your admin user group?

Liam

nassella · Sep 15, 2016

Liam W said:
It's not that. That message is shown when permissions are set to force enabling of Tfa.

One of your user groups has the force Tfa permission active.

Did you grant all permissions on your admin user group?

Liam

I had it "not set" for admins - but have turned it to "never" now there and for registered users. I will check mods

nassella · Sep 15, 2016

It was set for the moderators (lol)

Paul B · Sep 15, 2016

We have seen many, many cases of sites being compromised and damaged (sometimes irreparably) due to administrators not having 2FA enabled and their log in credentials being the same on numerous other sites which have been hacked and leaked online.

It is particularly problematic amongst the minecraft and gaming communities.

You should actually consider forcing 2FA for administrators, rather than setting it to never.

nassella · Sep 15, 2016

Will do.

Brogan said:
We have seen many, many cases of sites being compromised and damaged (sometimes irreparably) due to administrators not having 2FA enabled and their log in credentials being the same on numerous other sites which have been hacked and leaked online.

It is particularly problematic amongst the minecraft and gaming communities.

You should actually consider forcing 2FA for administrators, rather than setting it to never.[/QUOTE

Commodore · Oct 26, 2016

Brogan said:
You should actually consider forcing 2FA for administrators, rather than setting it to never.

How do you do this?

Martok · Oct 26, 2016

Commodore said:
How do you do this?

ACP > Options > Admin Control Panel

Commodore · Oct 26, 2016

Ahh very good thank you.

XF 1.5 Two Step Verification Shows Up - How to Turn it Off

nassella

Active member

Paul B

XenForo moderator

nassella

Active member

Liam W

in memoriam 1998-2020

nassella

Active member

nassella

Active member

Paul B

XenForo moderator

nassella

Active member

Commodore

Active member

Martok

Well-known member

Commodore

Active member

Similar threads

We value your privacy