Webmail (Roundcube): Enabling Two Factor Authentication

New Ground Rules in Effect
September 3, 2017

Two Factor Authentication, also known as Two Step Authentication, is a way to improve security of an online account, be it your mailbox or website’s admin account. And what it basically means is that on top of your password you’re required to enter a PIN code. This code protects you from situations when someone steals (or guesses) your password and tries to login without you knowing. Each time they try to login using that forged password, they’re asked for a PIN that changes all the time.

It wouldn’t be me if I didn’t improve security of my customers’ data by introducing Two Factor Authentication to my webmail service.

Here’s what you need to do to enable it for your mailbox(es):

1. Log in to your mailbox via webmail (your webmail link should look like https://webmail.yourdomain.com).

2. Click the Settings button in the top right corner.

3. Click the ‘2-Factor Authentication’ menu item on the left.

4. Tick the checkbox where it says ‘Activate‘ and click the ‘Create secret‘ button (no need to fill in any of the Recovery Codes fields).

5. Save the settings, a new button called ‘Show QR Code’ is displayed. Click it to reveral your unique QR code.

6. Scan the QR code using your phone – you need to have Google’s Authenticator app installed on it. Get it on iTunes or Google Play (both links open in a new tab/window)
7. Open the Authenticator app and follow on-screen instructions to scan the QR code. When done, a new 6-digit code will appear on your phone’s screen.

8. Enter the new 6-digit code into the ‘Check Code’ field. If all checks out, you should see a message saying ‘Code OK’.

And that’s it! Each time you’ll try to log in to your webmail, you will be asked for a new PIN. Use the Google Authenticator app on your phone to generate one.

From now on you can be sure nobody will get into your mailbox via webmail no matter what passwords they may have stolen from you 🙂

Leave a Reply

%d bloggers like this: