After July 2021, the 2.3.x release line no longer received quality updates or user guide updates. PHP 7.3 reached end of support in December 2021, and Adobe Commerce 2.3.x reached end of support in September 2022. We strongly recommend upgrading to Adobe Commerce 2.4.x to help maintain PCI compliance.

Using Two-Factor-Authentication

This site contains archived merchant documentation for a version of Adobe Commerce and Magento Open Source that has reached end-of-support. The documentation available here is intended for historical reference only and is not maintained. The Adobe Commerce Merchant Documentation for current releases is published on the Adobe Experience League.

U2F Key

With the U2F device configured, the user attaches the device to their system when logging into the Admin. For more information, check your U2F vendor documentation, such as YubiKey by Yubico.

  1. Enter Magento Admin account credentials and sign in to your account.

    U2F key access U2F Key Access

  2. Press the button on the key.

    Authentication immediately triggers and opens the Admin.

  3. Insert the U2F key into a USB port on your computer.

Google Authenticator

Step 1: Configure Google Authenticator

  1. Enter Magento Admin account credentials and log in.

    A new authenticator screen appears with a QR code.

  2. Open the Google Authenticator app on your mobile device.

  3. Click the plus sign ( + ) to add a new entry. Then, do the following:

    • Line up the red box with the QR code to scan with the camera on the mobile device.

    • When it recognizes the QR code and adds an entry, enter that 6-digit code in the Admin Authenticator code field.

  4. When complete, click Confirm.

    Google Authenticator QR code Google Authenticator QR code

Step 2: Sign In with Google Authenticator

  1. Enter your Magento Admin account credentials and sign in.

    Google Authenticator - signin Google Authenticator

  2. Open Google Authenticator on your mobile device.

  3. When prompted, enter the six-digit Authentication code.

  4. To save the authentication for future logins, select the Trust this device, do not ask again checkbox.

  5. When complete, click Confirm.

Authy

The Authy authenticator includes multiple types of apps available from this page, including: Mobile App, Desktop App, and Chrome App. For details about setup, see Authy documentation.

Step 1: Configure Authy

  1. Enter Your Magento Admin account credentials and sign in.

    Authy registration Authy registration

  2. When prompted to register yourself with Authy, do the following:

    • Select your Country.

    • Enter your Phone number.

    • Select one of the following Verification methods:

      • SMS
      • Call Me

    • Click Continue.

    A message is sent to your phone through SMS text or a call.

  3. Enter the Verification code that you receive and click Verify.

  4. When complete, click Confirm.

    Authy verification code Authy verification code

Step 2: Sign In with Authy

  1. Enter Magento Admin account credentials and sign in.

    Authy - signin Authy access

  2. Choose one of the following methods to authenticate:

    • Use one touch — Sends an alert to your Authy app. In the app, accept the access.
    • Use authy token — Prompts to enter a code from your Authy app.

  3. If you have trouble signing in, choose the method you want to use to receive the code. Then, enter the code that you receive to access the Admin.

    The app includes these additional emergency methods.

    • Send me a code via SMS — A text SMS message is sent to the configured mobile device.
    • Send me a code via phone call — The user receives a phone call with a code.

    Your account is verified and opens.

Duo

The Duo Mobile app is available through Google Play or iOS App Store. To use, it must be activated and linked to an account. For details, your security staff should obtain a Duo account and complete setup.

Step 1: Configure Duo

  1. Enter Magento Admin account credentials and sign in to your account.

  2. When the Duo Setup page appears. Click Start setup and do the following:

    Example storefront - Duo setup Duo Setup

    • Select your device.

      Duo authentication - select device Device Type

    • When prompted, enter your phone number, and click Continue.

      This example requests your phone number, because we are using a mobile device.

      Duo authentication - enter phone number Enter Your Phone Number

    • When prompted to install Duo Mobile for your phone type, click I have Duo Mobile.

      Duo authentication - verify app installation Verify App Installation

  3. Open Duo Mobile, and scan the QR code to sync the authenticator with Magento. A checkmark appears when the activation is complete.

    Duo authentication - verification code Duo Verification Code

  4. To configure your settings for the device, choose the action that you want to take place when you sign in.

    • Ask me to choose an authenticator method — Allows the user to select when logging in and authenticating in the Magento Admin.
    • Automatically send this device a Duo Push — Sends a message to your device to accept or deny for access.
    • Automatically call this device — Calls and provides a passcode for entering

    Duo verification actions Duo verification code

Step 2: Sign In with Duo

The following example displays the options when selecting Ask me to choose an authenticator method:

  1. When prompted, enter Enter Magento Admin credentials to log in.

    Duo - signin Duo access

  2. Choose the method that you want to use to authenticate:

    • Send Me a Push — Click to receive a push notice to Duo Mobile. Accept to authenticate.
    • Call Me — Click this option, receive a call with a code, and enter the passcode.
    • Enter a Passcode — Click this option to receive and enter a passcode.

  3. Complete the push or code to fully sign in to the Admin.

© 2024 Adobe. All rights reserved.