PasswordLab Two-Factor Authentication (2FA) Setup Guide

Enabling two-factor authentication (2FA) is a critical step to enhance the security of your PasswordLab account. This guide provides step-by-step instructions for configuring 2FA using either email-based OTP or a mobile authenticator app (such as Google Authenticator or Authy).

Why Use 2FA?

• Stronger security: Protects your account even if your password is compromised
• Flexible options: Choose between email-based OTP or app-based OTP
• Meets compliance: Satisfies security requirements for most organizations

Prerequisites

• Access to your PasswordLab account
• A mobile device with an authenticator app (Google Authenticator, Authy, Microsoft Authenticator, etc.)

Step-by-Step: Setting Up 2FA

1. Log in to Your PasswordLab Account

• Open the PasswordLab web app in your browser
• Enter your credentials and log in

2. Access 2FA Settings

• Click on the Preference menu option
• Select Setup MFA (Multi-Factor Authentication)

3. Choose Your 2FA Method

You will see two authentication methods:

• Email-based OTP (default): Receive a one-time code via email
• Mobile App-based OTP: Use an authenticator app to generate a time-based code

To Set Up Mobile App-based OTP:

• Click the Mobile App option
• A QR code will be displayed
• Open your authenticator app on your mobile device
• Scan the QR code
• The app will add your PasswordLab account and display a 6-digit code
• Enter the 6-digit code from your app into the PasswordLab form
• Click Save
• You will see a success message confirming 2FA is now set to mobile app

To Revert to Email-based OTP:

• Click the Email option
• Click Save
• You will see a success message confirming 2FA is now set to email

How 2FA Works During Login

• After entering your email and password, you will be prompted for a second factor
• If using mobile app-based OTP: Open your authenticator app and enter the current 6-digit code
• If using email-based OTP: Check your email for the one-time code and enter it
• If the code is correct, you will be logged in and redirected to your password page

Best Practices

• Always enable 2FA for all accounts, especially administrator accounts
• Do not share your 2FA codes with anyone
• If you lose access to your authenticator app, contact your administrator for recovery options

Troubleshooting

• QR code not scanning?
  • Ensure your mobile device camera is working
  • Try increasing screen brightness
  • Manually enter the secret key if available
• Not receiving email OTP?
  • Check your spam/junk folder
  • Verify your email address in account settings
• Authenticator app code not working?
  • Ensure your device time is set correctly (use automatic time sync)
  • Wait for the next code cycle and try again

By following this guide, you can easily and securely enable two-factor authentication for your PasswordLab account, significantly improving your account's security.