Bitrix24Care

Two-step authentication (OTP)

Two-step or two-factor authentication is an additional way to secure your account. In the first stage, you enter your username and password, and in the second stage, a unique one-time code, which is generated in a special application. Even if someone finds out your password, this person won't be able to enter your account. This method of protection is used in most services, and Bitrix24 is not exception.


How to connect two-step authentication

Before using two-step authentication, it is important to set the correct time and time zone on your phone. It is also recommended that you do not change the main time on your phone, i.e., use only manual or automatic time zone changes when moving to other locations.

Go to the profile page and click on the Security button.

In the Security section, click Connect.

Set up two-step authentication according to the following instruction:

  1. Download the Bitrix24 OTP application, which is used to generate one-time passwords.
  2. You can use any application for two-step authentication with time-based password generation algorithm (TOTP, Time-based One-time Password Algorithm).

  3. Run application and and click on the icon to add a new account.

  4. Scan QR code or enter the code manually. Also enter the verification code from the app or from the list in the manual instructions.

Done! Now, when logging in, in addition to your username and password, you will need to enter a one-time code, which you will be given in the application. You can also use backup codes.


Recovery codes

After two-step authentication connection, you can use backup codes to enter one of them instead of a one-time code. Each code can only be used once.

Recovery codes

Recovery codes may be needed if you don't have access to your smartphone. Since two-step authentication is linked to a specific mobile device, you will have to connect it again. Save them just in case. To do this, you can Print them or Save to text file.

If you forgot to save the codes, you can ask the administrator to temporarily disable two-step authentication. After you log in, reconnect it.

Mandatory two-step authentication

For security reasons, we recommend you to enable the Make two-step authentication mandatory for all users option in the account Settings, that can be found in the left menu. In this case, only the administrator can disable the OTP. If the option is disabled, any employee can simply disable it.

Also specify the period of time for employees to connect two-step authentication.


Two-step authentication in Bitrix24 On-Premise version

In the Bitrix24 On-Premise version, two types of two-step authentication are available: with the Time-based One-Time Password Algorithm (TOTP) and HMAC-Based One-Time Password Algorithm (HOTP). You can connect two-step authentication via mobile phone applications, as well as via special electronic devices, for example, eToken.

First you need to enable two-step authentication in the administrative interface in the Proactive protectionTwo-step authentication section and make the necessary settings in the Settings tab: set the default password generation algorithm - by time (TOTP) or by count (HOTP):

Then you can choose connection via the public part in My Bitrix24 page.

You can also connect two-step authentication in the administrative interface. Go to the user profile and select the desired option in the Two-step authentication tab.

In the administrative interface in the user profile, you can select any option to connect two-step authorization. In the public part in My Page, you can connect only in the way that is selected by default in the settings of the Proactive protection module.

If there is no Two-step authentication tab in the user profile, you need to adjust the form view or cancel its setting: click the gear in the right corner of the form and select the appropriate item.
Was this information helpful?
Optional:
Article feedback
Could you please tell us why:
Article feedback
Integration specialist assistance
Go to Bitrix24
Don't have an account? Create for free