PasswordLab Two-Factor Authentication (2FA) Setup Guide
Enabling two-factor authentication (2FA) is a critical step to enhance the security of your PasswordLab account. This guide provides step-by-step instructions for configuring 2FA using either email-based OTP or a mobile authenticator app (such as Google Authenticator or Authy).
Why Use 2FA?
- Stronger security: Protects your account even if your password is compromised
- Flexible options: Choose between email-based OTP or app-based OTP
- Meets compliance: Satisfies security requirements for most organizations
Prerequisites
- Access to your PasswordLab account
- A mobile device with an authenticator app (Google Authenticator, Authy, Microsoft Authenticator, etc.)
Step-by-Step: Setting Up 2FA
1. Log in to Your PasswordLab Account
- Open the PasswordLab web app in your browser
- Enter your credentials and log in
2. Access 2FA Settings
- Click on the Preference menu option
- Select Setup MFA (Multi-Factor Authentication)
3. Choose Your 2FA Method
You will see two authentication methods:
- Email-based OTP (default): Receive a one-time code via email
- Mobile App-based OTP: Use an authenticator app to generate a time-based code
To Set Up Mobile App-based OTP:
- Click the Mobile App option
- A QR code will be displayed
- Open your authenticator app on your mobile device
- Scan the QR code
- The app will add your PasswordLab account and display a 6-digit code
- Enter the 6-digit code from your app into the PasswordLab form
- Click Save
- You will see a success message confirming 2FA is now set to mobile app
To Revert to Email-based OTP:
- Click the Email option
- Click Save
- You will see a success message confirming 2FA is now set to email
How 2FA Works During Login
- After entering your email and password, you will be prompted for a second factor
- If using mobile app-based OTP: Open your authenticator app and enter the current 6-digit code
- If using email-based OTP: Check your email for the one-time code and enter it
- If the code is correct, you will be logged in and redirected to your password page
Best Practices
- Always enable 2FA for all accounts, especially administrator accounts
- Do not share your 2FA codes with anyone
- If you lose access to your authenticator app, contact your administrator for recovery options
Troubleshooting
- QR code not scanning?
- Ensure your mobile device camera is working
- Try increasing screen brightness
- Manually enter the secret key if available
- Not receiving email OTP?
- Check your spam/junk folder
- Verify your email address in account settings
- Authenticator app code not working?
- Ensure your device time is set correctly (use automatic time sync)
- Wait for the next code cycle and try again
By following this guide, you can easily and securely enable two-factor authentication for your PasswordLab account, significantly improving your account's security.