How do I set up two-factor authentication (2FA) as a user?
Two-factor authentication (2FA) provides an added layer of security for your WriteUpp account, and can be enabled by a site administrator.
If you are the site administrator who enabled two-factor authentication for your account, the process of enabling 2FA also configured your own personal 2FA for logging in. You will be able to use the entry in your authenticator app generated by this process to log in going forwards.
As the name suggests, 2FA uses two mechanisms (instead of one) to verify your identity when you login to WriteUpp. In our case these two mechanisms are:
Username/password - like normal
A verification code generated by an authenticator app
All this means is that the login process has one extra step after you have entered your username and password. This step involves entering a Time-based, One-time Password (TOTP) which is a six digit code generated by an authenticator app on your mobile phone.
On most devices, we would recommend using Google Authenticator, which we will use to walk you through the setup.
There are other authenticator apps available, and although we can't cover the exact workflow for all of them, they will be broadly similar to the below.
If you are using macOS Monterey (or later) or iOS 15 (or later), you can use the built in verification code generator within your iCloud keychain password manager.
Before you will be able to login using 2FA, there is a very small amount of set up required. This is a one-time process and will only need repeating if you lose/change your mobile phone and your 2FA has been reset.
If you're logging in for the first time after 2FA has been enabled on your site, you will see this on screen, although the barcode will not be voided!
To continue logging in, you will need to complete the 2FA set up process by following the on-screen instructions using your preferred authentication route.
After entering your email and password on the WriteUpp login screen, follow the below steps:
Install the Google Authenticator app on your mobile phone:
App Store (iOS)
Play Store (Android)
Open the Google Authenticator app and click on the + icon on screen
Choose Scan a QR code
Scan the QR code shown on your WriteUpp screen. This will create an entry in the Authenticator app for your WriteUpp account, and generate a six digit code
Enter the six digit code into the field shown on your WriteUpp screen and click on Activate
To complete the setup process, you will need to confirm your mobile number. If your mobile number is already entered against your WriteUpp user profile, it will be displayed here for you to confirm, otherwise enter your number and click on Send SMS
You'll be sent a four digit code via SMS to that mobile number. Once the code is received, enter it on screen and click on Verify
Once you've done this, you'll be logged into WriteUpp and 2FA will be configured for you via Google authenticator
Going forwards when you log in to WriteUpp, after entering your email and password you'll be prompted to enter a code from your authenticator app. Open Google Authenticator, find the entry relating to your WriteUpp account and enter the 6 digit code from the app into the field displayed on the WriteUpp login screen. Bear in mind that the code is time sensitive and changes every 30 seconds
Clicking on Trust this device when logging in will mark your device as "trusted" and means you won't have to enter a code each time you log in. Instead, you'll remain verified for 2 weeks. After that you'll be prompted for another code and can choose to trust this device again to save the verification for another 2 weeks
First of all, make sure that you are using Safari and that your login details are already saved to your iCloud keychain. After entering your email and password on the WriteUpp login screen, follow the below steps:
On macOS, right click on the QR code and choose Set up Verification Code:
On iOS, tap and hold the QR code and choose Add Verification Code in Passwords:
If you right click on the QR code and you don't see the option to set up a verification code, your version of macOS or iOS doesn't support verification codes and you should continue to use Google Authenticator (or another authenticator app). If you are using the latest version of macOS or iOS, make sure you are using Safari and Chrome or any other browser won't support the code setup via your keychain
Use your Apple verification (FaceID/TouchID/Password etc) to access the list of passwords saved in your keychain
Find your WriteUpp account details when prompted to "Choose an account to add this verification code to"
You'll be taken to the account details as saved in your keychain and see an additional "Verification code" field has been added to the saved details
Navigate back to Safari and tap or click into the "Enter the six digit code here" field
Safari should offer you a verification code at the bottom of the window, which will come directly from the information saved in your keychain
If it doesn't, you can navigate to the Passwords on your device, find your WriteUpp details and manually copy the verification code. Bear in mind that it is time sensitive and changes every 30 seconds!
Use your Apple verification (FaceID/TouchID/Password etc) to confirm the use of the code
The code will be populated for you
If prompted on the next screen, enter or confirm your mobile number and click or tap on Send SMS. Once the code is received, enter it on screen and click or tap on Verify
If you've previously verified your mobile number, you won't be asked to do this
You'll be logged into WriteUpp and 2FA will be set up for you via your iCloud keychain
The next time you log in, on the two factor authentication screen, Safari should match your login details to the verification code saved alongside it and offer it as an autofill option. If it doesn't, you can go to Settings -> Passwords and manually copy the code from the entry containing your WriteUpp details, then paste it into the field.
Just as above, clicking on Trust this device when logging in will mark your device as "trusted" and means you won't have to enter a code each time you log in. Instead, you'll remain verified for 2 weeks. After that you'll be prompted for another code and can choose to trust this device again to save the verification for another 2 weeks.
If you are the site administrator who enabled two-factor authentication for your account, the process of enabling 2FA also configured your own personal 2FA for logging in. You will be able to use the entry in your authenticator app generated by this process to log in going forwards.
As the name suggests, 2FA uses two mechanisms (instead of one) to verify your identity when you login to WriteUpp. In our case these two mechanisms are:
Username/password - like normal
A verification code generated by an authenticator app
All this means is that the login process has one extra step after you have entered your username and password. This step involves entering a Time-based, One-time Password (TOTP) which is a six digit code generated by an authenticator app on your mobile phone.
On most devices, we would recommend using Google Authenticator, which we will use to walk you through the setup.
There are other authenticator apps available, and although we can't cover the exact workflow for all of them, they will be broadly similar to the below.
If you are using macOS Monterey (or later) or iOS 15 (or later), you can use the built in verification code generator within your iCloud keychain password manager.
Before you will be able to login using 2FA, there is a very small amount of set up required. This is a one-time process and will only need repeating if you lose/change your mobile phone and your 2FA has been reset.
If you're logging in for the first time after 2FA has been enabled on your site, you will see this on screen, although the barcode will not be voided!
To continue logging in, you will need to complete the 2FA set up process by following the on-screen instructions using your preferred authentication route.
To set up 2FA using Google Authenticator:
After entering your email and password on the WriteUpp login screen, follow the below steps:
Install the Google Authenticator app on your mobile phone:
App Store (iOS)
Play Store (Android)
Open the Google Authenticator app and click on the + icon on screen
Choose Scan a QR code
Scan the QR code shown on your WriteUpp screen. This will create an entry in the Authenticator app for your WriteUpp account, and generate a six digit code
Enter the six digit code into the field shown on your WriteUpp screen and click on Activate
To complete the setup process, you will need to confirm your mobile number. If your mobile number is already entered against your WriteUpp user profile, it will be displayed here for you to confirm, otherwise enter your number and click on Send SMS
You'll be sent a four digit code via SMS to that mobile number. Once the code is received, enter it on screen and click on Verify
Once you've done this, you'll be logged into WriteUpp and 2FA will be configured for you via Google authenticator
Going forwards when you log in to WriteUpp, after entering your email and password you'll be prompted to enter a code from your authenticator app. Open Google Authenticator, find the entry relating to your WriteUpp account and enter the 6 digit code from the app into the field displayed on the WriteUpp login screen. Bear in mind that the code is time sensitive and changes every 30 seconds
Clicking on Trust this device when logging in will mark your device as "trusted" and means you won't have to enter a code each time you log in. Instead, you'll remain verified for 2 weeks. After that you'll be prompted for another code and can choose to trust this device again to save the verification for another 2 weeks
To set up 2FA using the iCloud Keychain
First of all, make sure that you are using Safari and that your login details are already saved to your iCloud keychain. After entering your email and password on the WriteUpp login screen, follow the below steps:
On macOS, right click on the QR code and choose Set up Verification Code:
On iOS, tap and hold the QR code and choose Add Verification Code in Passwords:
If you right click on the QR code and you don't see the option to set up a verification code, your version of macOS or iOS doesn't support verification codes and you should continue to use Google Authenticator (or another authenticator app). If you are using the latest version of macOS or iOS, make sure you are using Safari and Chrome or any other browser won't support the code setup via your keychain
Use your Apple verification (FaceID/TouchID/Password etc) to access the list of passwords saved in your keychain
Find your WriteUpp account details when prompted to "Choose an account to add this verification code to"
You'll be taken to the account details as saved in your keychain and see an additional "Verification code" field has been added to the saved details
Navigate back to Safari and tap or click into the "Enter the six digit code here" field
Safari should offer you a verification code at the bottom of the window, which will come directly from the information saved in your keychain
If it doesn't, you can navigate to the Passwords on your device, find your WriteUpp details and manually copy the verification code. Bear in mind that it is time sensitive and changes every 30 seconds!
Use your Apple verification (FaceID/TouchID/Password etc) to confirm the use of the code
The code will be populated for you
If prompted on the next screen, enter or confirm your mobile number and click or tap on Send SMS. Once the code is received, enter it on screen and click or tap on Verify
If you've previously verified your mobile number, you won't be asked to do this
You'll be logged into WriteUpp and 2FA will be set up for you via your iCloud keychain
The next time you log in, on the two factor authentication screen, Safari should match your login details to the verification code saved alongside it and offer it as an autofill option. If it doesn't, you can go to Settings -> Passwords and manually copy the code from the entry containing your WriteUpp details, then paste it into the field.
Just as above, clicking on Trust this device when logging in will mark your device as "trusted" and means you won't have to enter a code each time you log in. Instead, you'll remain verified for 2 weeks. After that you'll be prompted for another code and can choose to trust this device again to save the verification for another 2 weeks.
Updated on: 04/07/2024
Thank you!