Setting Up Multi-Factor Authentication in Cloud Mail

You can access your Cloud Mail only with your username and password. However, you can be more secure in your logon procedure by accepting added authentication when you have already logged in with your common username and password. This process is referred to popularly as Multi-Factor Authentication in Cloud Mail.

The added authentication is done by verifying your identity with your device. You can use the following methods to confirm your identity:

• Google Authenticator - Install this app on your mobile device to get an auto-generated code, then enter the code to verify your identity.
• Yubikey, Google Security, or compatible FIDO device - Your identity is confirmed during the login using a security key connected to your PC via USB or wirelessly.
• SMS code verification - Your mobile device will receive the code via SMS. You must input this code to verify your identity.

In this article, we will discuss:

• Setting Up Verification Methods
  • How to Set Up Your Verification Methods
  • Setting Up a Verification Using an Authenticator App
• Verifying a Login Using an Authenticator App
• Verifying the Login with a Security Key
• Verifying the Login with an SMS Code
• Recovering Verifications
  • Recovering via an SMS Code
• Managing Verification Methods
• Review

Setting Up Verification Methods

Before using 2-step verification for the next login, you must set up the additional verification methods needed. The following options exist:

• Set up verification methods.
• Having successfully set up the main method of authentication, you will also have to set up a means of recovery. It is very crucial in case you lose the device by which you authenticate.

Now, with the recovery feature, you can once again log on to your Cloud Mail account.

How to Set Up Your Verification Methods

1. Log in to your email via mail.domain.ext. For example, if your domain name is example.com, you will need to enter mail.example.com in any browser.
2. In the upper right corner of your Webmail app, click the gear icon beside your user profile, then click All settings.
   
    
3. Open Security on the left pane, then click Two-step verification.
   
    
4. Click the Add verification option button.
   
    
5. According to your configuration, you can find multiple verification methods available there.

Setting Up a Verification Using an Authenticator App

1. Install Google Authenticator or a compatible app on the mobile device you want to use for verification.
2. Launch the app.
3. Click the Google Authenticator or compatible button.
   
    
4. When the QR code appears in the Authenticator registration window, scan it using the Authenticator App on your smartphone.
5. If scanning does not work, enter the code provided in the Authenticator registration window.
   
    
6. Once complete, enter an authentication code to verify everything is configured properly.
7. Click Ok.

Verifying a Login Using an Authenticator App

This verification method works as follows:

• Use code generated by an app on your mobile device.
• The code is valid for 30 seconds. A new code is automatically displayed as soon as the time expires, which is good for 30 seconds.
• You have to use the same authenticator app you used to set up the verification method when logging in.

To verify your identity with an Authenticator App, follow these steps:

1. Launch the authenticator app on your smartphone.
2. Select the service you use to verify the login if the app displays multiple services.
3. Log in with your username and password.
4. If you have set up multiple verification methods, the Select 2-step verification method window opens.
5. Choose Google Authenticator.
6. The 2-Step Verification window opens. Enter the app's current code on your mobile device in the Authentication Code.

Verifying the Login with a Security Key

This verification method works as follows:

• Use a security key to connect your computer via USB or wirelessly.
• You will be prompted to activate the security key while signing in, for example, by clicking a button on the security key.

Follow the steps below to validate your identity with a security key.

1. Connect your computer with the security key.
2. Log in with your username and password.
3. If you have multiple verification methods configured, the Select 2-step verification method window appears. Choose from Yubikey, Google Security Keys, or FIDO-compatible devices.
4. The Confirm Code window opens. Activate your security key.

Verifying the Login with an SMS Code

This verification method works as follows:

• Use the code you received by SMS on your mobile phone.
• The last digit of the device's mobile number to which the SMS is sent is displayed.

Follow the steps below to validate your identity with an SMS code.

1. Log in with your username and password.
2. If you have set up multiple verification methods, the Select 2-step verification method window opens. Choose SMS Code.
3. You will get an SMS with a code on your mobile device.
4. When the 2-Step Verification window opens, enter the code.

Recovering Verifications

You need the recovery. In case you lose the device, you use it for verification. You can log in to your Cloud Mail using this recovery method.

To log in using a recovery method, follow these steps:

1. Select I lost my device in the 2-Step Verification or Select 2-Step Verification Method window.
2. Enter the recovery code that appears in the window.
3. If you downloaded the recovery code as a text file when setting up the recovery method, you could also click on the Upload recovery file. Select the text file containing the recovery code.
4. You will get an SMS with a 4-digit authentication code momentarily.
5. Enter the code and click OK.

Recovering via an SMS Code

1. Click on I lost my device in the 2-Step Verification or Select 2-Step Verification Method window. You are asked to enter the recovery code that appears in the window.
2. You will get an SMS with a 4-digit authentication code shortly.
3. Enter this code and click OK.

Managing Verification Methods

The following options exist:

• Add a verification method.
• Rename the verification device.
• Remove a verification device.

You can use several verification methods and manage them; however, you are only allowed to have one recovery method.

To manage verification methods or verification devices simply:

1. Log in to your email via mail.domain.ext. For example, if your domain name is example.com, you will need to enter mail.example.com in any browser.
2. In the upper right corner of your Webmail app, click the gear icon beside your user profile, then click All settings.
   
    
3. Select Security on the left pane, then click Two-step verification.
   
    
4. The following are your options.
   • Edit - Opens the Edit multifactor device window to change the name of the device.
   • Delete icon - Removes a verification device.
   • Add verification option - Adds a new verification method.

Review

Installing 2-step verification on Cloud Mail adds a good level of security to your account, requiring one more verification step after your password. This can be done through several methods- Google Authenticator, security keys, or SMS codes. Through all these, you will make sure that your Cloud Mail account will be secure from unauthorized entry. Remember never to forget putting up a recovery method should you lock yourself out by losing access to your primary verification device.