Step-by-step guide on how to login to a SecureAccess® CLOUD intranet portal using login details, a Fido UTF device or 2-step verification on a linked mobile device.
When trying to connect to a web application protected by SecureAccess® CLOUD (e.g. an intranet portal), the following access window will be shown:
Image 1: SecureAccess® login page
Type your username and press the Enter key or click in Next button.
Then type your password. If the two-factor authentication is enabled for your account, an extra window will be displayed to link your SecureAccess® CLOUD account to your mobile device.
The displayed window depends of the option set by your organization's administrator. There are two types, SecureAccess® PUSH, SecureAccess® TOTP and Fido U2F.
If the SecureAccess® PUSH has been set as two factor authentication for your account, a new window to link your mobile device will be displayed just after the access window.
Open the SecureAccess® 2FA app in your device and scan the QR code displayed by SecureAccess® CLOUD, as shown in the following image:
SecureAccess® PUSH QR code
Once the QR code has been scanned, the SecureAccess® CLOUD account will be linked to your mobile device thought the SecureAccess® 2FA. Now click in the Finish button.
A notification will be sent to your mobile device to grant access to once the QR code has been scanned, the SecureAccess® CLOUD account will be linked to your mobile device thought the SecureAccess® 2FA.
Since this moment, any new access to a web application through SecureAccess® CLOUD, will send a notification to the linked device asking for confirmation. In this way, even if someone knows your credentials, the access to web applications protected by SecureAccess® CLOUD will be blocked as he does not have access to your mobile device.
If your user account has been configured to use two factor authentication based in SecureAccess® TOTP, a new window similar to the image below will be displayed in the first access to your account.
SecureAccess® TOTP code
As first step, open the app in your mobile device and scan the QR code.
Once the code has been scanned, your SecureAccess® CLOUD account will be linked to your mobile device. The two-factor authentication code TOTP for your account will be displayed in the app.
Type the given code in the TOTP Code field located just below the QR code and click the Finish button.
At this point your session will be authenticated in SecureAccess® CLOUD and the access to web applications of your organization will be granted.
Since this moment, as your mobile device is linked to your SecureAccess® CLOUD account, SecureAccess® CLOUD will ask for a TOTP code before given access to the web applications. A new TOTP code is generated each minute, in this way, even if someone knows your credentials, the access to web applications protected by SecureAccess® CLOUD will be blocked as he does not have access to your mobile device.
Note: Date and time must be properly set in your mobile device for ensuring the right behavior of SecureAccess® TOTP.
If your user account has been configured to use an Fido U2F usb device, when you have inserted your credentials the system will solicites you to plug in your device.
Click Next and your browser will solicite you that confirm clicking your Fido U2F device.
Click your Fido U2F confirm button, now your device will be linked correctly.