Breadcrumbs

Setting up Two-Factor Authentication (2FA)

Two-factor authentication (2FA) adds an additional layer of security to your IDHUB account. After setup, access to EAS and myEAS requires both your password and a one-time code generated by an authenticator.

Supported authenticators

IDHUB supports the following authenticator types.

Mobile authenticator apps

  • Google Authenticator

  • Microsoft Authenticator

  • FreeOTP

These apps are installed on a mobile device and generate one-time codes locally.

Browser-based authenticator extensions

Browser-based authenticators generate one-time codes directly inside your web browser and do not require a mobile device.

Supported browsers:

  • Chrome

  • Edge

  • Firefox

Example: Authenticator Extension
For official Authenticator Extension Quickstart documentation, see https://authenticator.cc/docs/en/quickstart.

How to set up two-factor authentication

📌 First login

If this is your first login to IDHUB, the 2FA setup screen will appear automatically after you enter your credentials. See Accessing myEAS and EAS via IDHUB - First login for details. The instructions below are for setting up 2FA when you're already logged in or adding a second authenticator.

  1. Decide on what authenticator to use:

    • a mobile authenticator app, or

    • a browser-based authenticator extension

  2. Install the authenticator of your choice.

  3. In myEAS, open the user menu (top-right) and select Account security to open the IDHUB console.

  4. Go to Account security - Signing in.

  5. Select Set Up Authenticator Application.

image-20260120-140130.png

  1. When the Set up Authenticator Application dialog is displayed:

    • Mobile app: Scan the QR code using your authenticator app.

    • Browser extension: Use the extension’s Scan QR Code feature to capture the QR code from the screen.

  2. If scanning is not possible, select Unable to Scan? and configure the authenticator manually using the provided key.

image-20260119-150024.png

  1. Verify your setup by entering the one-time code generated by your authenticator.

  2. Optional: Assign a name to the device so it appears clearly in your IDHUB settings.

📌 Setting up a second authenticator (recommended)

Configuring at least two authenticators (for example, a mobile device and a browser-based authenticator) helps prevent account lockouts if one device becomes unavailable.

See also How do I set up a second (backup) authenticator? in IDHUB Frequently Asked Questions.

Using 2FA during login

After 2FA is configured:

  1. Enter your email address and password.

  2. Open your authenticator app or browser extension.

  3. Enter the displayed one-time code on the Security Check (2FA) screen.

image-20260119-151108.png

After successful verification, you are redirected to EAS or myEAS.