Setting up two-factor authentication for researchers
For added security and peace of mind, dscout supports two-factor authentication (2FA). This means you can require two forms of credentials to log in: (1) Your email and password and (2) a unique, temporary passcode generated by a 2FA app or SMS message.
Enabling account-wide 2FA
Account Owners and admins can force-enable two-factor authentication for all members on their company account. The next time members on the account log into dscout, they'll be forced to enable 2FA on their own account. To enable 2FA on your account:
- Navigate to your dscout Account settings by clicking your profile picture in the top-right corner, then selecting "Account."
- Select "Settings" in the top taskbar. (Can't see Settings? You might not be the Account Owner)
- Toggle on "Require Two-Factor Authentication"
Enabling personal 2FA
To use 2FA, you’ll need to have your mobile device with you to generate a verification code. There are two options available to you. You are able to set up 2FA both ways if you wish:
- Download an authentication app on your device. (e.g. Authy, Google Authenticator, Authenticator Plus, Duo Mobile, etc.
- Be able to receive SMS text messages on your mobile phone.
- Navigate to your dscout Profile settings by clicking your profile picture in the top-right corner, then select ‘Profile’.
- From the personal settings page, you’ll click on the ‘Activate Two Factor Authentication’ button.
- The next page will walk you through setting up 2FA using an authentication app. You may also use SMS text messages.
Using an Authentication app
- Open the authentication app and use it to scan the QR code on the 2FA setup page using your device’s camera -- there is usually a “+” icon to add a new account.
- Once you scan the QR code, enter the 6-digit verification code generated by the app.
- Click ‘Verify Code and Activate.’ When you log in next time, you’ll be prompted to enter a 6-digit code from your authentication app.
- If you haven’t already set up SMS verification, you’ll then be taken to the 2FA Backup Codes page. You must copy and store these codes somewhere safe in case you lose access to your authentication device. Each code can only be used once to login to your account.
Using SMS text messages
- From the SMS setup page, enter your mobile phone number to receive a verification code.
- Enter the 6-digit verification code received on your mobile phone via SMS text.
- Click ‘Verify Code and Activate,’ and you’re all set! When you log in next time, you’ll be prompted to enter a 6-digit code.
- If you haven’t already set up authentication via an app, you’ll then be taken to the 2FA Backup Codes page. You must copy and store these codes somewhere safe in case you lose access to your authentication device. Each code can only be used once to login to your account.
NOTE: Data and messaging rates may apply. Depending on your cellular service provider, the SMS message may be delayed. If it has been more than a minute and you have not received the code, you will either need to request a new one or use a backup code.
Generate New Backup Codes
In case you lose track of your active set of backup codes, you can always generate a new set of codes. You’ll find this option under your Profile settings.
Heads up: when you generate new backup codes, your old codes will no longer be valid.
Help! I locked myself out
No worries! Please reach out to firstname.lastname@example.org for help with regaining access to your account.
Deactivating Two Factor Authentication
Under Profile settings, you’ll have the option to deactivate your 2FA login requirement. When you click the link, you’ll be prompted to enter your password to confirm the deactivation.