What is Two-Factor Authentication (2FA) and How to Use It?

2FA increases security by using two separate pieces of information or elements to verify your identity. In addition to your password, a second step is added, usually a one-time password (OTP) sent to your mobile phone or a security code from a verification app. This way, even if someone knows your password, they can't get into your account without access to your phone or verification app.

The 2FA process consists of two steps:

• Step 1: You enter your account login details, i.e. your username and password.
• Step two: You receive a security code via SMS on your phone or from the verification app. Once you enter this code into the system, your identity is verified and access to your account is granted.

2FA can be set up in a simple way to increase your account security. The following steps will help you enable two-factor authentication.

To create a new configuration:

1. After logging in to the Kuika platform, open the project you will work with from the “Apps” screen.
2. Then click on the “Configuration Manager” module.
3. From the screen that opens, give the configuration a name (1) and click on the “CREATE” (2) button. Thus, you have added a new configuration to your application.

4. You can perform authentication by entering username and password from the Authentication & Authorization field.
5. When you activate the switch from the 2FA field, the authentication process becomes two-stage. The first step is usually a password and the second step is the OTP security code.
6. The 2 Auth Duration field is the validity period of the OTP or security code, which is the second stage in the two-factor authentication process. Authenticates with SMS every 15 days.

OTP and Security Code Usage

The most common form of 2FA is provided by OTP (one-time password) or security codes. It ensures security by being regenerated with each login attempt and remains valid for a certain period of time.

• OTP by SMS: After your password verification, a one-time security code is sent to your cell phone. Enter this code to verify your identity.

• Verification Code Screen: You can use the Screens panel in the UI Design module to customize this screen.
• Sending Verification Code via Email: You can use the Verify Email template in the Email Builder module to customize the Verification Code template that will be sent to the user's email.

Sending Verification Code via SMS or NotificationIf the user wants to receive the verification code via SMS or notification other than email, you can create a new verification method using the Datasource module :

1. Open the Datasource module in Header and create a new Datasource by clicking the + icon in the left panel.
2. In the screen that opens, select C# and then select Custom Verification Code Sender Provider from the Select Box in the same screen.

This selection allows the verification code to be sent to the user via email, SMS or notification. The following information should be requested from the user in this datasource:

• User Email
• Username and surname (First-Last Name)
• User number (User Phone)

Whichever way the user wants to send the code, the necessary adjustments should be made above the return false code block. Finally, click on the CREATE button.

Two-factor authentication offers an additional layer of security in case passwords are compromised or easily guessed. Therefore, 2FA increases security on many platforms, from financial transactions to social media accounts. As a simple and effective security solution, using 2FA keeps your account safe even if your passwords are compromised.