# Multi-Factor Authentication

Multi-factor authentication (MFA) is a security system that requires users to provide multiple forms of authentication in order to access a system, application, or service. This adds an extra layer of security, making it more difficult for unauthorised users to gain access to sensitive information

You can set up Multi-Factor authentication in one of the two ways. Firstly, using any **Authenticator** app capable of generating **Time-based One-Time Password (TOTP)** authentication codes. You can use Google Authenticator or Duo Mobile or any other compatible application to generate the codes. Secondly, You can enable OTP based login via Registered Email Address. Everytime you try to login a OTP will be sent to your registered email and you have to verify it.

### Setup

> To enable Multi-Factor Authentication:

1. Navigate to Your **Hacker Dashboard > Settings > Security.**
2. Choose any one of the Authentication type and Enable it.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FpAnqRuT3J5eNrlM33M1M%2Fimage.png?alt=media&#x26;token=6a5cdfee-9dfa-4821-8374-6400da3ed792" alt=""><figcaption></figcaption></figure>

### MFA via Authenticator App

1. Toggle **Enable multi factor authentication via authenticator app**.
2. A modal would pop up on your screen, click on the **Setup** button to initiate MFA process.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FzvdrXloBjKqXX9bWSGnO%2Fimage.png?alt=media&#x26;token=f2a12fe8-bb54-4c47-8fc9-f204ba041915" alt=""><figcaption></figcaption></figure>

3. You will see a `QR code` and also a `Secret key` on the screen.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FwgPiHf6NgV8ufHzTvCP1%2Fimage.png?alt=media&#x26;token=3e5718b9-313a-4b5c-9ad1-eef7e735ba72" alt=""><figcaption></figcaption></figure>

4. You can either scan the `QR code` or enter the `Secret Key` and manually save it on your Authenticator app. Now you would be able to see the`BugBase (username)` account in your app.
5. Click **`Continue`** once you have added your account in the Authenticator app.
6. Enter the 6-digit code from the Authenticator app and click on `Verify`.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FLdPzIHoGFpG6d6yIgk2i%2Fimage.png?alt=media&#x26;token=daf53918-ac68-44cb-a017-abd6b11b2c5c" alt=""><figcaption></figcaption></figure>

7. After successful verification, you will be logged out from your account and you will be asked to enter the 6-digit OTP every time you are logging in.&#x20;

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FoMsxdBoAsU4QzH5Geony%2FScreenshot%202023-04-05%20at%206.42.15%20PM.png?alt=media&#x26;token=15bda179-f27d-45d8-b9d2-2381369af318" alt=""><figcaption></figcaption></figure>

### MFA via Email OTP

1. Toggle **Enable multi factor authentication via email**.
2. A modal would pop up on your screen, click on the **Setup** button to initiate MFA process.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FbtVFcOAqm767BkgnR8KH%2Fimage.png?alt=media&#x26;token=84c7470d-8af4-44bc-96b8-e287f7987e35" alt=""><figcaption></figcaption></figure>

3. A One-Time Password will be sent to your registered email and Enter the OTP to complete the verification process.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2F4l2X83caxuDXZvDEWGel%2Fimage.png?alt=media&#x26;token=1122338c-668b-41eb-b4bc-18ef54a64d9d" alt=""><figcaption></figcaption></figure>

> You can disable multi-factor authentication as well from **`Settings`** > **`Security`**.