In order to improve the security options available for our users, SearchStax recently added Two-Factor Authentication or 2FA for our Managed Solr and Site Search products. Some industries require 2FA including Financial Services, Healthcare, Defense, Law Enforcement and the US Government — and companies in other industries have beefed up the steps to fortify the security of their systems and access to their digital assets.
Learn more about Two-Factor Authentication and how to set it up with your SearchStax applications in this blog post.
What is Two-Factor Authentication?
Two-Factor Authentication is a popular security protocol which provides added security for any application or account that has implemented it. Using 2FA makes any application more secure by adding an extra layer of protection to the account. The two factors means that someone would need your password plus physical access to your phone or mobile device that generates the security key needed to enter the application.
SearchStax implemented 2FA for Managed Solr and Site Search using Google Authenticator, a software-based authentication solution from Google. Once your SearchStax account is registered with Google Authenticator, it automatically generates and displays the latest 2-Step Verification code on your phone or other mobile device.
One benefit of Google Authenticator is that the code changes every 60 seconds which provides added security. Google Authenticator is available for Android, iPhone and iPad devices.
How Do I Implement Two-Factor Authentication for SearchStax?
The steps to implement Two-Factor Authentication is slightly different depending on whether you are in Managed Solr or Site Search but the end result will be the same:
- Go to User Preferences in Managed Solr or My Profile in Site Search
- Select Two-Factor Authentication
- Scan the QR code with your smartphone or tablet camera and select Install
- Click on the link to install the Google Authenticator app and register SearchStax as a recognized application
- If you have already installed the Authenticator, you will be prompted to open the link in Authenticator and can then add the SearchStax token for the SearchStax application
As part of the setup process, a list of Backup Verification Codes are generated that you can use if you lose your phone. We recommend that you take a screenshot or print the codes and store them in a safe place. You can also view the Backup Codes from within either the Managed Solr or Site Search application where you initially set up 2FA.
With 2FA turned on, there is an additional step needed to access your account. First, you will need to enter your email address and password, then a secondary screen will appear where you will enter your six-digit code from Google Authenticator.
The Google Authenticator code changes every 60 seconds so you will have to have the application open when you are ready to log in so you can get the latest code.
If you use both Managed Solr and Site Search and use the same email address to access both applications, the same Google Authenticator registration covers both applications. Note that 2FA is an optional security feature and can be turned off at any time though the application
Learn More about Two-Factor Authentication
No authentication solution is 100% secure, but adding 2FA for your SearchStax products will provide an extra roadblock for anyone trying to access your corporate information. Learn more about implementing Two-Factor Authentication by checking out our product documentation pages:
If you have any other questions about 2FA, please contact SearchStax Support.