Important update 1: Email Support is being transitioned to Webforms. Click here for more information.
Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            Set Up Two-Factor Authentication (2FA) in OpenSRS Webmail

            Two-factor authentication (2FA) is a security measure that requires two separate factors to sign in: something you know and something you have. A strong, unique password remains essential as the first factor, while 2FA adds a randomly generated six-digit code from a device you trust, such as your phone. This article explains how to enable 2FA with an authenticator app or SMS, how to sign in with it active, and how to disable it.

            About two-factor authentication

            You can receive your 2FA code in several ways. The most common is a smartphone authenticator app or a code sent by text message. Some password managers, such as 1Password, can also generate one-time codes.

            Each option has trade-offs. An authenticator app is generally more secure than an SMS code, because text messages can be diverted to another device. An authenticator app must be disabled or moved before you reset or replace your phone, so plan ahead before changing devices.

            Before you begin

            • A 2FA method. Choose an authenticator app or SMS text messaging before you start. Recommended authenticator apps include Google Authenticator and FreeOTP, which are available for iOS and Android.
            • Webmail access. You sign in at mail.hostedemail.com.

            Step 1: Enable 2FA with an authenticator app

            1. Sign in to your webmail.
            2. Select Settings from the sidebar.
            3. From the left menu, select Password, then Two-factor authentication.
            4. Choose to set up 2FA with an authenticator.
            5. Select Enable with Google Authenticator, then re-enter your password when prompted.
            6. Scan the QR code with your authenticator app, then enter the six-digit code it generates.
            7. You are logged out automatically. When you sign in again, 2FA is required and your account is protected.

            Note: Most authenticator apps use the same TOTP standard and can be used in place of Google Authenticator.

            Step 2: Enable 2FA with SMS

            1. Sign in to your webmail.
            2. Select Settings from the sidebar.
            3. From the left menu, select Password, then Two-factor authentication.
            4. Choose to set up 2FA with SMS text messaging.
            5. Select Enable with SMS, then re-enter your email password and your phone number.
            6. When you receive the text message, enter the six-digit code.
            7. You are logged out automatically. When you sign in again, 2FA is required and your account is protected.

            Step 3: Sign in to webmail with 2FA enabled

            1. Go to the webmail login page.
            2. Enter your email address and password.
            3. Enter your 2FA login token when prompted to access your mail.

            Warning: While 2FA is active, you cannot update your password. A new password does not take effect until 2FA is disabled.

            Step 4: Disable 2FA

            1. Sign in to your webmail.
            2. Select Settings from the sidebar.
            3. From the left menu, select Password, then Two-factor authentication.
            4. Select Disable.
            5. Enter your current password and select Submit.
            6. Enter the verification token from your SMS or authenticator app and click Submit.
            7. A confirmation message appears. You can continue without 2FA or set up a new 2FA device.

            Next steps

            Questions? Contact OpenSRS Support.

            How helpful was this article?

            Thanks for your feedback!

            Do you still need help? If so please submit a request here.