https://man.liquidfiles.com
LiquidFiles Documentation

In this article, we're going to enable Strong Two-Factor Authentication using Time-Based One Time Password Authentication (TOTP). Sometimes this is called app authentication using authenticator apps like Authy, Google Authenticator, Microsoft Authenticator and similar. There's clients for almost any type of clients. Modern password managers like 1Password and LastPass also includes TOTP authenticator clients. The standard for TOTP is defined in RFC6238.

Video Overview

Please see the following video overview of using TOTP Strong Two-Factor Authentication:

Configuration

There's no requirement for any configuration to enable TOTP Authentication. You can configure a friendly name if you want in Admin → Configuration → Strong Auth TOTP.

images/authentication/totp/totp_configuration.png

In order to enable your users to use TOTP Authentication, you can choose to enable or require TOTP Authentication on a per group basis in Admin → Groups:

images/authentication/totp/totp_group_configuration.png

The default configuration for all groups is TOTP Enable. If you select TOTP Enable, users can enable TOTP Strong Two-Factor Authentation if they want. If you select TOTP Require, users will require to use TOTP Strong Two-Factor Authentication.

User Configuration

If you have selected TOTP Enable for a group of users, users in that group can enable TOTP Authentication by going to Account Settings and the Two-Factor Authentication Tab:

images/authentication/totp/totp_user_configuration.png

If you have selected TOTP Require, users will be required to configure TOTP using a similar screen next time they login.

Please see the Video Overview above to see the user experience.

TOTP Clients

Since TOTP is based on an open standard, there are many available clients for a variety of systems. Here are some examples in alphabetical order:

Name Description Platforms
1Password Cross-platform password manager IOS, Android, Windows, MacOS, Linux, ChromeOS
Authy Cross-platform 2 Factor Authentication App IOS, Android, MacOS, Windows
FreeOTP Cross-platform Open Source 2 Factor Authentication App IOS, Android
Google Authenticator Cross-platform 2 Factor Authentication App IOS, Android
LastPass Cross-platform password manager IOS, Android, Windows, MacOS, Linux
Microsoft Authenticator Cross-platform 2 Factor Authentication App IOS, Android