Two-Step Verification

What Is Two-Step Verification?

Two-step Verification is one of SocketLabs' additional security features. It prevents unauthorized users from logging into your SocketLabs Control Panel even if they have acquired your username and password.

It does this by using one of your personal devices to verify your identity. When you set up two-step verification, you register a device with us that you know you will be able to access whenever you are logging in. This device can be a smartphone, tablet, laptop or desktop computer.

Every time you attempt to log into the SocketLabs Control Panel, a verification code will be sent to your device via SMS or Authenticator app. This verification code must then be entered to complete the login process. Without your personal device, no one else can access your account.

How Do I Set Up Two-Step Verification?

Each user can set up Two-Step Verification for their individual account by taking the following actions:

  1. Log into the SocketLabs Control Panel.
  2. Click on your name in the upper right-hand corner of the screen.
  3. Select My Profile from the drop-down menu.
  4. Scroll to the User Security Section and click the Enable Two-Step Verification button.
  5. This will bring up a setup wizard. Simply follow the instructions, which will walk you through each step.

Please note that once you complete this process, you will be required to verify your identity using two-step authentication every time you log in.

What If I Can't Access The Device I Use For Two-Step Verification?

Backup Phone Number

During Two-Step Verification setup, you will be presented with the option to provide a backup phone number for verification via SMS. You can also provide this at a later time by viewing the Security page and selecting "Add a backup phone number". When you are asked for a verification code while logging into the SocketLabs Control Panel, click on the "Having trouble?" link and then select "Send a verification code to my backup phone number ending with XXXX". This will allow you to enter a code sent to your backup phone.

Backup Codes

When you set up Two-Step Verification, we provide you with a set of printable, one-time-use Backup Codes. When you are asked for a verification code while logging in, click on the "Having trouble?" link and then select "Let me enter one of my backup codes". Remember: each of these codes are usable one time only. We recommend keeping this list in a secure location and crossing any codes you have used off of your list.

If you use the last of your Backup Codes, do not log out without navigating to the Security page and selecting "Regenerate backup codes." This will provide you with a whole new set.

How Do I Turn Off Two-Step Verification?

To turn off Two-Step Verification for your user account, follow the instructions below.

  1. Log into the SocketLabs Control Panel.
  2. Click on your name in the upper right-hand corner of the screen.
  3. Select My Profile from the drop-down menu.
  4. Scroll to the User Security Section and click the Remove Two-Step Verification button.
  5. Click Remove Two Step in the pop-up to confirm that you want to disable.

How Do I Change My Two-Step Verification Device Or Method?

You may change your Two-Step Verification settings at any time by navigating to the Security page and clicking Edit next to the phone number you wish to change. You may also click Remove next to the Backup number if you no longer wish to provide a secondary device.

If you have enabled SMS verification and wish to switch to Google Authenticator (or vice versa), simply Remove your existing configuration and then click Enable Two-Step Verification to begin again.

Google Authenticator must be set up again for each new device.