Huawei without Google in 2023? It is time to give up



authentication google play store :: Article Creator

How To Use An Authenticator App With Any Website Or Service

Featured image of an authenticator app example. Source: Unsplash.

Authenticator apps are very common. They allow you to safely access many web browsers and gadgets. This guide shows how to use an authenticator app to visit any website or use any service.

What Are Authenticator Apps?

Authenticator apps are a way to safely sign in to different websites and user accounts. They work by verifying a randomly generated and frequently changing security code on two separate devices. It can be your phone and another device such as a laptop browser. This adds an extra layer of protection, as the code has to remain the same on both devices for a successful login.

Microsoft Authenticator and Google Authenticator are the best-known examples of authenticator apps. The latter is one of the most secure ways to sign in to your Google account on iOS and Android without requiring text messages, even when your phone is offline. You need to confirm a six-digit code which changes every 30 seconds on the mobile app, after which a new code is generated.

Authenticator apps give you extra security by requiring two different devices to confirm it's really you. They also offer robust protection against screenshots, which ensures the codes remain local to your device.

Because the codes on an authenticator app cannot be duplicated in real time, and their random generation is hidden behind a deep layer of encryption, this method is safer than sending a one-time password to your phone. Signing in using authenticator apps is an example of two-factor authentication (TFA), and even multi-factor authentication (MFA).

FYI: learn how to use Google Authenticator on a Windows PC.

How Do Authenticator Apps Work?

While different authenticator apps have their own working mechanisms, all of them have a few things in common. After an initial setup, none of them require a password anymore. Yet, they work as a password manager for multiple user accounts. Most authenticator apps work in two different ways:

  • Time-Based One-Time Password (TOTP): you only need numbered codes, which typically expire after 30 seconds. This protects you from SIM card tricks, Bluetooth hacking, and other ways hackers could steal your credentials.
  • Hash-Based Message Authentication Code One-Time Password (HOTP): this is another method that uses event-based authentication. The code generated is valid until a new one is requested.

    • In a Google account on a desktop browser, the authenticator was previously downloaded and installed from Google Play on the code-generating mobile device. Now the user only needs to turn on two-step verification using the TOTP mechanism.

    To sign in, they will need to enter a six-digit code visible on the app. After both numbered codes match, the user can access their Google account. If there's a typo, the user needs to wait another 30 seconds to enter the correct numbered code.

    Also, as authenticator apps serve as a connecting medium between two physical devices, you need two devices. At least one should be a mobile device, where the authenticator app has to be downloaded and installed.

    FYI: apart from the Google Authenticator app, you can also create passkeys with Google for a genuine password-free experience

    How to Set Up an Authenticator App

    To set up an authenticator app, locate it on the App Store or Google Play, and download it to your phone. To initially install it, you need a user account. It means you have to either register for one or sign in using your Google, Apple ID, or Facebook account. This allows you to use your authenticator app to sign in to any account.

    There are different types of websites that sync with your authenticator app. Most authenticator apps have a prominent plus sign on the homescreen to add as many user accounts as possible.

    Some websites, such as Google and Microsoft apps, require you to scan a QR code. Use your phone's camera to scan the QR code, and it will automatically add the authenticator on a secondary device. Then, use it for TOTP login.

    Another way to connect an authenticator app to a website is to use a setup key. This is a private key that uses a combination of letters and numbers to be confirmed on both devices. This is useful for people who often forget to carry their phone with them.

    Notably, the private key is your only way to access a site safely, and you shouldn't lose access to it. However, WordPress websites do allow you to reset your private key.

    FYI: what is PGP encryption? Find out how it secures your data.

    How to Use an Authenticator App After Setup

    Once your authenticator app has been set up properly, you can start using it immediately to sign in to your account on any website. First, sign in using your username and password, the first layer of successful verification.

    The second layer of authentication is required next. Whether you want to access your account or a website, your authenticator app will continuously flash numbered codes. Make sure both codes match, and as soon as you enter the correct code on a secondary device, it will log you in.

    One of the major drawbacks of using authenticator apps is that they require you to constantly have access to your phone. If you lose or damage your phone, you may find yourself locked out of your user account. If it's a Google account, there are many ways to regain access, and a Google One subscription is recommended for emergencies.

    Image credit: Unsplash. All screenshots by Sayak Boral.

    Subscribe to our newsletter!

    Our latest tutorials delivered straight to your inbox

    Sayak Boral is a technology writer with over eleven years of experience working in different industries including semiconductors, IoT, enterprise IT, telecommunications OSS/BSS, and network security. He has been writing for MakeTechEasier on a wide range of technical topics including Windows, Android, Internet, Hardware Guides, Browsers, Software Tools, and Product Reviews.


    Duo: Two-factor Authentication

    Duo: Increasing Data Security at WU

    Two-factor Authentication provides an added layer of protection when accessing Willamette applications such as the Portal, WISE, SAGE, Zoom, and Workday. After you log in with your Willamette ID and password, you'll use a device in your possession to verify your identity. With two-factor, your data is protected, even if your password becomes compromised.  To achieve this functionality, WITS is using a product named Duo.

    Once you are enrolled in Duo, you'll need to verify your SSO (Single Sign On) login with a second form of identification.  You can watch Duo's official introduction video here: Welcome to Duo Video

    Duo Enrollment

    How to Enroll in Two-factor Authentication

    To enroll, you will be notified by WITS that your department is being set up on two-factor authentication (Duo) and then the next time you log into a protected application, you will be prompted to enroll in Duo Security. Contact WITS at x6767 or your User Services Consultant if you need help with these instructions. 

    1. Begin

    Click on 'Start Setup' and enter your Willamette ID and password at the two-factor authentication page to begin enrollment.

    2. Enroll

    Choose your methods from the list below and see more details about the options in Methods Table (see below).

  • Select Duo Mobile Push or Single Use Verification Codes (highly recommended as your primary option!)
  • First, use your smartphone to download the free Duo Mobile app from the App Store (iOS) or Google Play Store (Android) depending on your device.
  • Follow the on-screen instructions to generate a QR code on your computer screen, and then use the Duo Mobile app to scan this code.
  • Accept the Duo test push on your device before proceeding.
  • Click 'Add another device' to add a phone as a backup (recommended). Choose 'Landline' to enter your office phone number.
  • If you are in a location with poor cellular data and/or WiFi connectivity, you can open the Duo app and use a Single Use Verification Code as your two-factor authentication method.  This works exactly the same as the Hardware Token mentioned below.
    • (or)
  • Select Phone Call as your primary method
  • If you would like the two-factor authentication service to call you on one of your phones, enter your mobile phone and/or landline numbers.
    • (or)
  • Select Hardware Token as your primary method
  • If you wish to register a physical hardware token that will display two-factor authentication codes, you'll have to get one from your User Services Consultant and supply the token's serial number during registration.
  • The Hardware Token is like a key-fob with a number on it.  Numbers on the Token are tied to your user account in Duo and they work even if you are in a location without WiFi.

    • That's it! Now you're ready for two-factor authentication whenever your web application asks for it.

    If you need to make changes in the future to your Two Factor Authentication profile (e.G. Add/change a phone number, unenroll/re-enroll a new smartphone for Duo Mobile, etc.), the next time you're logging in and the Authentication with Duo screen pops up, click 'Add New Device' or 'My Settings & Devices' on the left hand side of the pop-up screen.

    How do I use Two Factor Authentication?

    Two-factor is easy to use and provides many verification options, so you'll always be able to access your data – even if you're not connected to a cellular data or Wi-Fi network.  

    After enrolling in two-factor, you'll:

  • Log in with your Willamette ID and password as usual.
  • Verify your identity using a device in your possession. Use one of the methods that you set up during enrollment.

    • Methods Table

    Method

    Device(s)

    Network Connectivity

    Duo Push (recommended)

    Receive an automated push notification on your device. Tap "Approve" to verify your identity and complete your login. If you ever receive a push notification and you didn't initiate it, tap "Deny", as this means someone is trying to gain unauthorized access to your account!

    iOS or Android Device (phone or tablet) with Duo Mobile app installed

    Wi-Fi or cellular data connection is required

    Duo Mobile Single-Use Verification Code

    Launch the Duo app on your device to see a single-use verification code. Enter the code in browser when prompted. Can use instead of "Push" whenever Wi-Fi or cellular data connections are weak/non-existent.

    iOS or Android Device (phone or tablet) with Duo Mobile app installed

    Does not require Wi-Fi or cellular data connectivity

    Phone Call (Recommended backup option)

    During enrollment, enter a phone number that you can easily access. At log-in time, you will receive an automated phone call allowing you to confirm or deny the Two Factor request. If you ever receive a phone call and you didn't initiate it, do not confirm it, as this means someone is trying to gain unauthorized access to your account!

    Any landline or mobile phone

    Phone service required

    Hardware Token 

    Automatically generate a single-use verification code using the token. Enter code into browser when prompted. Please contact your User Services Consultant for more information about procuring and using a hardware token.

    Hardware Token

    Does not require Wi-Fi or cellular data connectivity; hardware token is self-contained

    If you are unable to obtain a verification code using either your primary or back-up methods, call the WITS Help Desk at (503) 370-6767 during business hours (Monday – Friday, 8:00am – 5:00pm PST).  Additionally, you can contact your User Services Consultant to assist you. Two-factor Authentication FAQ

    Why is Willamette requiring faculty and staff to enroll in two-factor authentication?

    Willamette is requiring faculty and staff to enroll in two-factor authentication in order to protect University information assets and community members' personal information. Many of Willamette's peer institutions have already implemented two-factor, as have banks, financial services providers, and companies such as Apple and Google. As more and more of the University's interactions with its students, faculty, staff, and alumni occur over web-based applications, the need to protect your data from those with criminal intent or a personal grudge is continually increasing.

    Password-related security breaches are happening with increasing frequency all over the world. When such breaches occur, users' passwords and other personal information are then sold to other hackers, or even simply released openly to the world. Considering that users frequently re-use passwords at multiple websites, the security provided by a simple password becomes weaker each year.

    In short, relying on passwords to protect our personal and organizational security is not sufficient. We must take steps to improve the security posture of both the University as a whole and you, our individual users.

    One of the simplest and most effective methods to do so is to encourage wide adoption of two-factor authentication for access to applications.

    How do I enroll in two-factor authentication?

    WITS Staff will contact you and your department when it is scheduled to move to two-factor authentication.

    Will I need to use two-factor every time I log into a protected website?

    With two-factor, all Willamette applications that are set up on Single Sign-on (i.E., prompt you for your Willamette ID and password) will now also require you to provide two-factor authentication. However, during the log-in and verification process, you can choose to check the box for "Remember me for 7 days" This means you won't be prompted to use two-factor for subsequent logins for seven days.

    Note: The "Remember me for 7 days" feature is set for an individual browser on an individual computer. If you switch to a different browser or use a different computer, you will need to complete two-factor authentication for that new browser – but you can remember more than one browser for the 7 day period.

    Will I need to use Duo two-factor to log in to Google Apps?

    Not at this time. However, we are requiring administrative departments with access to confidential data to set up two step verification via Google 2-Step Verification. 

    Will I need to use Duo two-factor to log in to my desktop?

    Your Willamette desktop/laptop computer is not integrated with Duo two-factor authentication.  Log in as you always have in the past.

    What is Duo Mobile?

    Duo Mobile (https://duo.Com) is an application that allows you to use your Android or iOS device (smartphone) for two-step verification. Duo Mobile is free to download and use.

    Duo Mobile is simple to set up and provides two options for completing your second login step.

  • Use Duo Push to automatically receive a "push notification" on your device when you log in. You only need to press "Approve" on your device to complete the login. 
  • Open the Duo Mobile app on your iOS or Android device to generate a single-use verification code, and then enter that code in your browser.

    • For more information, refer to the Methods Table.

    What are the different methods and devices for logging in with Two-Step?

    Refer to the Methods Table above.

    Do I need to re-register my Duo Mobile device for two-factor if I change my cellphone number/SIM card?

    No. The Duo application uses Internet connectivity for push notifications, and requires no connectivity at all to generate 6-digit codes. If your phone number changes, you only need to update your phone numbers for the Call Me features, because these rely on your phone number. All other two-step methods (Duo Push, Duo Mobile codes, hardware token) are unaffected by changes to your cell phone number.

    How do I manage my two-factor authentication Duo profile?

    If you need to make changes in the future to your two-factor authentication profile (e.G. Add/change a phone number, unenroll/re-enroll a new smartphone for Duo Mobile, etc.), the next time you're logging in and the Authentication with Duo screen pops up, click 'Add New Device' or 'My Settings & Devices' on the left hand side of the pop-up screen. 

    Google 2-Step Verification

    Google 2-Step Verification protects your Google account. Each time you sign into your Google account, you'll need your password and a verification code that you obtain from the Google Authenticator app. However, you can have it remember a device so that it won't prompt you again on that device. 

    Willamette is now requiring all staff who have access to confidential data via their Google account to turn on Google 2-Step Verification. With Google 2-Step Verification, your Google account is protected, even if your password is compromised. In the near future, access to your Google account will be through single sign-on, and it will then be protected via Duo. 

    Follow this link to learn more and then click the "Get Started" button and follow the instructions to set it up. Contact the Help Desk or your User Services Consultant if you need assistance.


    How To Fix Getting Stuck On Authenticating In MultiVersus

    If you are trying to hop in on the MultiVersus action, you may have encountered some problems with connecting to the game's servers. Some errors are self-explanatory, while other times… you're just stuck on Authenticating forever.

    Whether you are playing MultiVersus on PC or console, you'll always have to authenticate your game when connecting to the servers. This is to make sure your game is up to date and ready to link up with other players online—though you can get trapped in that cycle on occasion.

    Still, there are a few things you can do to fix getting stuck on Authenticating in MultiVersus.

    An in game image of Wonder Woman from MultiVersusIs she yawning because it's easy, or because she's still waiting for authenticating? Image via Player First Games.

    Just like with most major issues when it comes to an online game's connection, there is one cause we think is the most likely: Internal server issues. But just because getting stuck Authenticating in MultiVersus might not be a problem on your end, there are still a few things you can try to get around the problem.  

    1) Wait it out

    It's frustrating, but 95 percent of the time, you're going to have to wait until server space frees up or things otherwise come back online for this error to resolve. Server issues are common for popular online games, especially right after launch.

    I've been stuck on Authenticating after launching from Steam a few times today—twice, it resolved itself after a few minutes. The third time, the servers went down for maintenance, after which the error was similarly resolved. Of course, you should always check MultiVerus' server status to make sure there isn't a bigger issue going on, but the Authenticating loop is usually resolved quickly.

    2) Check for updates

    MultiVersus is a live-service game that frequently drops content updates and fixes for issues plaguing the game. If you want to play online, or connect to the game's servers, you have to be running the latest version of the game when connecting or you might run into problems.

    The authentication error isn't necessarily tied to having an outdated client but you should at least check on your platform of choice to see if there is a newer version of MultiVersus available to download. This can be done by selecting the app icon on PlayStation and Xbox, or by opening up Steam or the Epic Games Store to check for updates.

    3) Verify connection and check your internet speeds

    Another common problem with online games is the possibility your internet connection is down or running slowly. You probably already know how to check this, and a simple Google search will typically show you if you are having issues.

    On PC, after verifying your internet is connected, you'll want to check that MultiVersus has permission to access that connection. The easiest way to do this is by running Steam or Epic Games in admin mode by selecting Run as Administrator. You have to do this on either platform's application—a MultiVersus desktop icon is just a shortcut to the launcher, not the actual launcher. As such, that icon can't be run in admin mode.

    If running Steam or Epic as an administrator doesn't fix your problem of getting stuck on authenticating, that means your own network connectivity isn't the issue. Likewise, you should check to make sure your console of choice is connected to the internet via your settings.

    4) Verify PC game files

    I always offer this solution last because I firmly believe it has only ever fixed a handful of problems in the history of online gaming. Still, there is a non-zero chance your download has somehow retroactively become corrupted in a way that still lets you launch but doesn't allow you to authenticate.

    If you're playing on Steam:

  • Go to Steam Library.
  • Right-click MultiVersus and select Properties.
  • Tab down to Installed Files and select Verify integrity of game files.

    • If you're on Epic Games:

  • Go to Library.
  • Right-click MultiVersus and select Manage.
  • Select Verify Files at the top of the menu.

    • The game's file size is small enough that checking this solution should only take a few minutes, so even though it's unlikely it's the culprit, it won't hurt to check.

    Dot Esports is supported by our audience. When you purchase through links on our site, we may earn a small affiliate commission. Learn more about our Affiliate Policy



    -

    Comments

    Post a Comment

    Popular Posts

    Signal, WhatsApp and Telegram: All the major security differences between messaging apps - CNET

    Image
    Signal, WhatsApp and Telegram: All the major security differences between messaging apps - CNET Signal, WhatsApp and Telegram: All the major security differences between messaging apps - CNET Posted: 19 Feb 2021 04:00 AM PST Brent Lewin/Bloomberg/Getty Images If your choice of encrypted messaging app is a toss-up between Signal , Telegram and WhatsApp , do not waste your time with anything but Signal. This isn't about which has cuter features, more bells and whistles or is most convenient to use -- this is about pure privacy . If that's what you're after, nothing beats Signal. By now you probably already know what happened. On Jan. 7, in a tweet heard 'round the world, tech mogul Elon Musk continued his feud with Facebook by advocating people drop its WhatsApp messenger and use Signal instead. Twitter CEO Jack Dorsey retweeted his call. Around the same time, right-wing social network Parler went dark following the Capito
    Read more

    VPN browser extensions: Why you shouldn't use then - Tech Advisor

    VPN browser extensions: Why you shouldn't use then - Tech Advisor VPN browser extensions: Why you shouldn't use then - Tech Advisor Google Fi calls between Android subscribers will soon be end-to-end encrypted - 9to5Google How to encrypt your computer (and why you should) - Mashable How to encrypt and decrypt a folder on Android with SSE Universal Encryption - TechRepublic 4 ways to send encrypted messages on Android - TechRepublic WhatsApp “end-to-end encrypted” messages aren’t that private after all - Ars Technica ciphertext feedback (CFB) - TechTarget What Is the Windows Encrypting File System (EFS) and How Do You Enable or Disable It? - MUO - MakeUseOf Encrypting your online life is important - Telangana Today Keeper Password Manager Review – Forbes Advisor - Forbes [Update: Screenshot] Google Messages preparing end-to-end encryption for RCS messages - 9to5Google The iOS 15 priva
    Read more

    Police Target Criminal Users of Sky ECC Cryptophone Service - BankInfoSecurity.com

    Image
    Police Target Criminal Users of Sky ECC Cryptophone Service - BankInfoSecurity.com Police Target Criminal Users of Sky ECC Cryptophone Service - BankInfoSecurity.com Posted: 11 Mar 2021 12:00 AM PST Cybercrime , Encryption & Key Management , Endpoint Security Investigators Report Recently 'Unlocking' 170,000 Users' 3 Million Daily Messages Mathew J. Schwartz ( euroinfosec ) • March 11, 2021     Source: Sky ECC website Police say they have disrupted Sky ECC, a global encrypted communications network allegedly used by numerous criminals to plan their operations. See Also: Live Webinar | The Role of Passwords in the Hybrid Workforce Law enforcement authorities say Sky's cryptophone service, which includes both infrastructure and apps, is run from the United States and Canada, using infrastructure and private servers based in Europe as well as the service's own SIM cards. Sky ECC devices are available via vari
    Read more