Authentication: Difference between revisions

From xat wiki
No edit summary
Tag: ER: Lemona
No edit summary
(8 intermediate revisions by 4 users not shown)
Line 7: Line 7:


<!--T:3-->
<!--T:3-->
You shouldn't totally rely on Google Authenticator. You still need to use a strong password, see: [[Phishing]].
You should not rely on Google Authenticator if you do not have a strong password. Visit [[Phishing]] for more information.


<!--T:23-->
<!--T:23-->
Never ever share your token code with a friend or anybody else. xat staff or [[volunteers]] will never ask you to turn off Authentication. If anyone asks you to turn off Authentication, they are trying to access your account and steal your xats/days/powers.
'''Never''' share your token code with a friend or anybody else. xat staff or [[volunteers]] will never ask you to turn off Authentication. If anyone asks you to turn off Authentication, they are trying to access your account and steal your xats, days, and/or powers.


<!--T:24-->
<!--T:24-->
'''SAVE YOUR BARCODE IMAGE''' so you can scan it later if you lose your code.
'''SAVE YOUR BARCODE IMAGE''' so you can scan it later if you lose your code.


==Instructions on how to enable/disable Google Authenticator== <!--T:27-->
==How to enable or disable Google Authenticator== <!--T:27-->
</translate>
</translate>
{{img|image=https://util.xat.com/wiki/images/6/62/Auth_security_setting.png|description=<translate><!--T:25-->
{{img|image=https://util.xat.com/wiki/images/6/62/Auth_security_setting.png|description=<translate><!--T:25-->
Line 23: Line 23:


<!--T:28-->
<!--T:28-->
To enable authentication, go to the [http://xat.com/login login page], and login successfully. Click the third drop down menu and turn authentication to "ON (authenticated)". Enabling this will now lead you to a page with a QR code. You can scan the barcode by pressing the “Scan a barcode” option using the Google Authenticator app or browser extensions located below. You should receive a 6 digit code that you can then enter into the “Enter authenticator code” section on the xat login. The authenticator application generates a new 6 digit token code every 30 seconds. Ensure that you tick *Check to save token on this PC for 30 days.* If this is not ticked, it will ask for a new authentication code every time you login to your xat account.
To enable authentication, go to the [<tvar|1>https://xat.com/login</> login page], and login successfully. Click the third drop down menu and turn authentication to "ON (authenticated)". Enabling this will now lead you to a page with a QR code. You can scan the barcode by pressing the "Scan a barcode" option using the Google Authenticator app or browser extensions located below. You should receive a 6 digit code that you can then enter into the “Enter authenticator code” section on the xat login. The authenticator application generates a new 6 digit token code every 30 seconds. Ensure that you tick *Check to save token on this PC for 30 days.* If this is not ticked, it will ask for a new authentication code every time you login to your xat account.
</translate>
</translate>
{{img|image=https://util.xat.com/wiki/images/7/78/Auth_QR_code.png|description=<translate>
{{img|image=https://util.xat.com/wiki/images/7/78/Auth_QR_code.png|description=<translate>
Line 30: Line 30:
<translate>
<translate>
<!--T:26-->
<!--T:26-->
'''IMPORTANT: When you enable google authenticator, you should also print out the page and save with the code given. This will help you add again in case you lose authenticator code.
'''IMPORTANT:''' When you enable Google Authenticator, it is recommended for you to print the page with the code given. This will help you add it again in case you lose your authenticator code.


===Disabling=== <!--T:32-->
===Disabling=== <!--T:32-->


<!--T:30-->
<!--T:30-->
To disable authentication, go to the login page, and login successfully. Click the third drop down menu and turn authentication to "OFF (not authenticated)". This will also disable tickle power.
To disable authentication, go to [<tvar|1>https://xat.com/web_gear/chat/register.php</> xat's login page] and login successfully. Select the last drop-down menu and set it to "OFF (not authenticated)". This will also disable [[<tvar|2>Special:MyLanguage/tickle</>|tickle]] power.


==Frequently Asked Questions== <!--T:5-->
==Frequently Asked Questions== <!--T:5-->
'''Q. I get a clock error.
'''Q. I get a clock error.
*A. Please check the clock on your device and ensure that your time is set correctly. If the problem still occurs re-scan the bar code or re-enter the time based code.
*A. Please check the clock on your device and ensure that your time is set correctly. If the problem still occurs re-scan the bar code or re-enter the time-based code.
'''Q. Incorrect authenticator code.
'''Q. Incorrect authenticator code.
*A. Make sure the time on your phone is set correctly and enter the token then displayed on your phone.
*A. Make sure the time on your phone is set correctly and enter the token then displayed on your phone.
'''Q. What happens if I lose my phone or don't have access to enter the Token code?
'''Q. What happens if I lose my phone or don't have access to enter the Token code?
*A. Make a ticket at [http://xat.com/ticket http://xat.com/ticket] Under "Lost Auth" and request that you want your Token code reset.
*A. Make a ticket at [<tvar|1>https://xat.com/ticket</> http://xat.com/ticket] Under "Lost Auth" and request that you want your Token code reset.
'''Q. I get "Login requires authenticator code."
'''Q. I get "Login requires authenticator code."
*A. Check your device and enter the authenticator code given inside of the application.
*A. Check your device and enter the authenticator code given inside of the application.
'''Q. If I switch phones, how will I get this to work on my new one?
'''Q. If I switch phones, how will I get this to work on my new one?
*A. If you change phones, you need to use the page you printed out and add the account QR code/time based code to the application again. You can also turn off authenticator and turn it back on and use the new code.
*A. If you change phones, you need to use the page you printed out and add the account QR code/time-based code to the application again. You can also turn off authenticator and turn it back on and use the new code.


<!--T:15-->
<!--T:15-->
'''Q. My Google Authenticator codes aren't working. (Android)'''
'''Q. My Google Authenticator codes aren't working.'''


<!--T:16-->
<!--T:16-->
Line 57: Line 57:
<!--T:17-->
<!--T:17-->
:*To make sure that you have the correct time:
:*To make sure that you have the correct time:
<!--T:33-->
On Android:


<!--T:18-->
<!--T:18-->
Line 72: Line 75:
<!--T:22-->
<!--T:22-->
On the next screen, you will be confirmed whether time has been synced, and you should now be able to use your verification codes to log in. Syncing will only affect the internal time of your Google Authenticator app, not the one in your device's settings.
On the next screen, you will be confirmed whether time has been synced, and you should now be able to use your verification codes to log in. Syncing will only affect the internal time of your Google Authenticator app, not the one in your device's settings.
<!--T:34-->
On iOS:
<!--T:35-->
::*1. Go to the iPhone Settings app (your phone settings area)
<!--T:36-->
::*2. Select '''General'''
<!--T:37-->
::*3. Select '''Date & Time'''
<!--T:38-->
::*4. Disable the '''Set Automatically''' option and re-enable again
<!--T:39-->
::*5. Reboot your device


==Authenticator Applications== <!--T:6-->
==Authenticator Applications== <!--T:6-->
Line 94: Line 115:


<!--T:12-->
<!--T:12-->
Simply install the extension/app and add the time based code to the extension and it will generate the authentication codes for you to use to login.
Simply install the extension/app and add the time-based code to the extension and it will generate the authentication codes for you to use to login.


<!--T:13-->
<!--T:13-->
Line 100: Line 121:


<!--T:14-->
<!--T:14-->
'''It is recommended to use authenticator on your phone (i.e using a phone application) if possible as that is more secure.'''
'''It is recommended to use authenticator on your phone (i.e. using a phone application) if possible as that is more secure.'''
</translate>
</translate>

Revision as of 17:20, 29 October 2017


If you have an iOS, Android, Windows phone or Blackberry device, you can turn on Google Authenticator to add an extra layer of security to your account. This will make it a lot harder for unauthorized users to gain access to your account.

You should not rely on Google Authenticator if you do not have a strong password. Visit Phishing for more information.

Never share your token code with a friend or anybody else. xat staff or volunteers will never ask you to turn off Authentication. If anyone asks you to turn off Authentication, they are trying to access your account and steal your xats, days, and/or powers.

SAVE YOUR BARCODE IMAGE so you can scan it later if you lose your code.

How to enable or disable Google Authenticator

Template:Img is only allowed in User: namespace. Use [[File:]] (more on that here) or Template:Gallery on articles instead.

Enabling

To enable authentication, go to the login page, and login successfully. Click the third drop down menu and turn authentication to "ON (authenticated)". Enabling this will now lead you to a page with a QR code. You can scan the barcode by pressing the "Scan a barcode" option using the Google Authenticator app or browser extensions located below. You should receive a 6 digit code that you can then enter into the “Enter authenticator code” section on the xat login. The authenticator application generates a new 6 digit token code every 30 seconds. Ensure that you tick *Check to save token on this PC for 30 days.* If this is not ticked, it will ask for a new authentication code every time you login to your xat account.

Template:Img is only allowed in User: namespace. Use [[File:]] (more on that here) or Template:Gallery on articles instead.

IMPORTANT: When you enable Google Authenticator, it is recommended for you to print the page with the code given. This will help you add it again in case you lose your authenticator code.

Disabling

To disable authentication, go to xat's login page and login successfully. Select the last drop-down menu and set it to "OFF (not authenticated)". This will also disable tickle power.

Frequently Asked Questions

Q. I get a clock error.

  • A. Please check the clock on your device and ensure that your time is set correctly. If the problem still occurs re-scan the bar code or re-enter the time-based code.

Q. Incorrect authenticator code.

  • A. Make sure the time on your phone is set correctly and enter the token then displayed on your phone.

Q. What happens if I lose my phone or don't have access to enter the Token code?

  • A. Make a ticket at http://xat.com/ticket Under "Lost Auth" and request that you want your Token code reset.

Q. I get "Login requires authenticator code."

  • A. Check your device and enter the authenticator code given inside of the application.

Q. If I switch phones, how will I get this to work on my new one?

  • A. If you change phones, you need to use the page you printed out and add the account QR code/time-based code to the application again. You can also turn off authenticator and turn it back on and use the new code.

Q. My Google Authenticator codes aren't working.

  • A. This might be because the time on your Google Authenticator app is not synced correctly.
  • To make sure that you have the correct time:

On Android:

  • 1. Go to the main menu on the Google Authenticator app
  • 2. Click Settings
  • 3. Click Time correction for codes
  • 4. Click Sync now

On the next screen, you will be confirmed whether time has been synced, and you should now be able to use your verification codes to log in. Syncing will only affect the internal time of your Google Authenticator app, not the one in your device's settings.

On iOS:

  • 1. Go to the iPhone Settings app (your phone settings area)
  • 2. Select General
  • 3. Select Date & Time
  • 4. Disable the Set Automatically option and re-enable again
  • 5. Reboot your device

Authenticator Applications

iOS, Android and BlackBerry Application support is listed at the following link: http://support.google.com/accounts/bin/answer.py?hl=en&answer=1066447 When following these guides, please use the code or QR code given by xat after enabling the google authenticator option as these are for your xat account.

Windows Phone app: https://www.microsoft.com/en-us/store/apps/authenticator/9wzdncrfj3rj

Windows 8/8.1/10 app: https://apps.microsoft.com/windows/en-us/app/google-authenticator/7ea6de74-dddb-47df-92cb-40afac4d38bb

Use Authentication without an application

Google Chrome: https://chrome.google.com/webstore/detail/gauth-authenticator/ilgcnhelpchnceeipipijaljkblbcobl

Firefox: https://5apps.com/gbraad/gauth

Other browsers: https://5apps.com/gbraad/gauth (use the web app)

Simply install the extension/app and add the time-based code to the extension and it will generate the authentication codes for you to use to login.

In the case of other browsers, you will have to load the web app every time to access your authenticator codes.

It is recommended to use authenticator on your phone (i.e. using a phone application) if possible as that is more secure.