Securing your account with 2 factor authentication (2FA)

Any application capable of generating 2FA codes is compatible with our service, however we would recommend the following apps:

Authy would be our recommended choice as it provides backups and allows you to sync your 2FA tokens across multiple devices which is helpful if you upgrade your phone or have to replace it.

Enabling 2 factor authentication

You can activate 2FA via the Account settings option, this can be found on the top navigation bar of https://my.sonassi.com

Account Settings

You can then select the Enable 2FA button to begin the process

Enable 2FA

The following screen will appear:

2FA QR View

Open the 2FA application on your phone, select Add account then scan the code displayed on your screen.

Your phone should now display a 6 digit number with a timer next to it, an example of how it looks in Authy is provided below:

2FA View

You should enter this into the One-time Password box and click Validate, this will complete the 2FA activation process.

Force 2FA on login

The Force two-factor authentication on login option will require you to enter your 2FA code on login (rather than when accessing 2FA enforced areas of the site), this will ensure that your account cannot be accessed by anyone other than yourself and is recommended for security purposes.

Please note: You should use Authy or another 2FA application with backup and restore functionality, to ensure you do not lock yourself out of your account in the event of phone theft, loss or upgrade when using this option.

Disabling 2 factor authentication

You can disable 2FA via the Account settings option, this can be found on the top navigation bar of https://my.sonassi.com

Account Settings

You can then select the Disable 2FA button to begin the process

Disable 2FA

An email will be sent to your email address, you should click the link to confirm that you wish to disable 2FA

2FA Mail Sample

This will complete the process of disabling 2FA.

Recovering from lost 2FA token with Forced 2FA enabled

In the event that you have lost your 2FA token and cannot login to your account, you will need to perform the following:

  • Send an email to support@sonassi.com from the email address on your account.