Sophos Google Authenticator

Posted on  by admin

A little under two years ago, I looked into how one might go about securing an eBay account using two-factor authentication (2FA).

At the time, it wasn’t clear if 2FA was supported on eBay officially or not, and I found a number of dead-end paths when trying to actually set up my account with 2FA – old documentation pages about 2FA appeared to be buried or completely deprecated, many links were completely dead. Calls to customer service didn’t help much, as the reps I spoke to had no idea what I was talking about or why I was asking.

There were legacy documentation pages about using a third-party time-based token authentication service, but these were mostly dead-ends as well and I had, to put it mildly, an extraordinarily difficult time trying to set things up.

Sophos

Add two factor authentication to a VPN using Sophos UTM: Part one Posted on 18 February 2019 by Beaming Support When you add 2FA to a VPN login you add an extra dimension of security, meaning users may only log on after providing an additional piece of information to prove their identity, in this case a code from Google Authenticator. Go to the “Signing in to Google” section and click “2-Step Verification.” If Google knows you have a phone connected to your account, it will take you through the steps to set up a basic phone notification service. After you have completed the steps, you’ll have the chance to set up the Authenticator app.

Sophos Authenticator Windows

By the end of it all, I had tried (and tried!) to set up 2FA on my account, but really to no avail. I concluded my piece with a plea for readers to let me know if I’d missed something obvious in trying to secure my account, or at the very least to ask eBay nicely to make this process easier.

  1. Yes, Sophos Intercept X requires more permission access to your device when compared to other applications — but that’s what makes it more usable. Overall, this app secures your web browsing, keeps an eye on your device security, and offers other important functionalities like authenticator and password manager.
  2. Google Authenticator (left) doesn’t use icons, unlike Authy (right), so it’s harder to quickly find the token you’re looking for there. Authenticator Plus, FreeOTP, Sophos Authenticator.

Over time, many of our Naked Security readers chimed in on my story saying that either they’d had similar processes, or they’d discovered a workaround entirely.

Sophos Authenticator Ios

As more time passed, the comments started to change tone entirely, that actually the 2FA process was super simple and easy to do now. Based on what readers like you had commented, it sounded like something had changed for the better. Clearly, it was past time for me to revisit this story.

I’m quite relieved and thankful to report that since I first wrote this the eBay 2FA story, eBay has not only binned its previous byzantine 2FA procedure, but it’s replaced it with something that’s both easy to find and easy to use.

Now, happily, this is how you can easily set up 2FA on your eBay account.

  • Log in to your account.
  • Go to your account settings by clicking on your name in the upper left (where it says “Hi [your name]!”) and clicking Account settings in the dropdown.
  • In the My Account menu on the left that now appears, click Personal information.
  • Scroll to the bottom of the Personal Information screen, and you’ll now see a field that says Security Information, with the 2 step verification option underneath it. If it is switched to “off”, click the Edit option on the right.
  • Follow the instructions on the screen. eBay 2FA supports voice and SMS factors (no support for time-based token authentication, like Google Authenticator or Duo, as far as I can tell).
  • You’ll get a confirmation once it’s set up. Easy peasy!

I’m relieved that eBay has now made this much easier for users, and hope if you’re an eBay user you’ll take a quick moment to get this set up on your account.


Sophos app download

Introduction

To improve security when accessing a restricted console such as 'Sophos Central™,' Administrators should use Multi-Factor Authentication. Multi-Factor Authentication adds an extra layer around the traditional username and password login, thus preventing unwanted access by threat actors to your Sophos™ Central console. With Acceptto™ Multi-Factor Authentication adding that extra layer is simples and cost-effective.

This guide walks you through the following steps:

  1. Configure the Administrator user(s) to use Multi-Factor Authentication.
  2. Scan a QR code generated by Sophos with the Acceptto Mobile Application.
  3. Log in to Sophos Central using Multi-Factor Authentication.

Initial Steps

Make sure you or user/s have the Acceptto It'sMe™ Mobile App downloaded from the Google Play or App Store. Then sign up for a new account.

Configure MFA Plugin

Step 1 - Configure MFA by first navigating to the Sophos Central admin webpage and select Global Settings on the left-hand side.

Select 'Profile & account' by clicking your Slack™ team name in the upper left.

Sophos Google Authenticator

Select Multi-Factor Authentication(MFA) from the list on the right.

Select the Administrator(s) accounts that are going to use Multi-Factor Authentication.

Step 2 - Set up Time-based One-Time Password(TOTP)

Select the Authentication type Sophos/Google Authenticator

Step 3 - Ready to use TOTP

Select the Authentication type Sophos/Google Authenticator.
Scan the QR code.
Enter the security code.

Setup Complete

Google

After the process is complete, all logins require a username, password, and OTP code.

If you require assistance, please email us at [email protected]

Sales

Want to learn more about our MFA solutions? Contact our Professional Services for a Demo today.

Disclaimer

All product names, trademarks, and registered trademarks are the property of their respective owners.

All company, product, and service names used in this document are for identification purposes only. The use of these names, trademarks, and brands do not constitute an endorsement by the Acceptto Corporation.

'Sophos Central' and Sophos are either registered trademarks or trademarks of Sophos Ltd. and/or one or more of its subsidiaries in the United States and/or other countries.

Slack is either registered trademarks or trademarks of Slack and/or one or more of its subsidiaries in the United States and/or other countries.