2-factor authentication is an authentication process where a user authenticates with two different identification credentials.
Launchpad supports a combination of the password for a user name along with a one-time password for the user account. The one time password can be generated by a time-based one-time password generating application, such as Google Authenticator or Authy. If the user does not have access to a smartphone or a smart device, he or she can have it delivered through e-mail to his or her email ID.
A user is able to log in successfully to Launchpad only when the combination of both the password and one time password matches the values configured for the user.
2-factor authentication can be enabled or enforced by a user with Admin role or privileges.
Launchpad provides an organization with a facility to enable or enforce 2-factor authentication for the users in the organization. When 2-factor authentication is enabled, it is the admin user's discretion to enable 2-factor authentication for some or all users in the organization, to access Launchpad. When 2-factor authentication is enforced, it is mandatory for every user in the organization to use 2-factor authentication to log in to Launchpad Services using Launchpad.
Note: 2-factor authentication is applicable to local users only and not to federated users.
The steps to implement 2-factor authentication for Launchpad are as follows.
An Admin user enables or enforces 2-factor authentication. Refer to Enable 2-Factor Authentication to enable 2-factor authentication. Refer to Enforce 2-Factor Authentication to enforce 2-factor authentication.
The individual user generates his one-time password when he or she logs in to Launchpad. This can be generated using a time-based one time-password generating application such as Google Authenticator,or can be generated by Launchpad and delivered to the user through an e-mail. The user must click the link available for email delivery on the login page to have the OTP delivered to his or her account through e-mail.
As an Admin user, you can enable 2-factor authentication at the customer level. When you enable 2-factor authentication at the customer level, it is an optional feature for the users. When you enable 2-factor authentication at the customer level, you must subsequently enable 2-factor authentication for users that must log in to Launchpad using 2-factor authentication.
To enable 2-factor authentication for a customer, perform the following steps.
Login to Launchpad using your credentials.
Click Admin.
Click Settings.
Select the 2-Factor Authentication check box.
Click Save.
To enable 2-factor authentication for an existing user, refer to the Edit User section under Manage Launchpad Users in the guide.
To enable 2-factor authentication for a new user, refer to the Add User section under Manage Launchpad Users in the guide.
As an Admin user, you can enforce 2-factor authentication at the customer level. When you enforce 2-factor authentication at the customer level, it is mandatory for all local users of the customer to log in to Launchpad by using 2-factor authentication. In order to enforce 2-factor authentication, it is necessary to enable 2-factor authentication on the customer. When you enforce 2-factor authentication , it is automatically enabled and enforced for all local users.
To enforce 2-factor authentication on the customer level, perform the following steps.
Login to Launchpad using your credentials.
Click Admin.
Click Settings.
Select the 2-Factor Authentication check box.
Select the Force 2-Factor Authentication check box.
Click Save.
When you enforce 2-Factor Authentication for at the customer level, all local users are forced to authenticate to Launchpad by using 2-factor authentication. for the first time, each user can authenticate by having the one-time password delivered to his or her e-mail ID. Thereafter, he can choose to use a time-based one time password app to generate the OTP for him. The user must go to his Account Settings for this. Refer to Manage Your Own Account Settings for details.