Skip to main content

Create a user-specific two-factor authentication requirement

Create a two-factor authentication requirement for a specific user. User-specific requirements override the account default for the selected user.

Before you begin

You must have Administrator access to configure authentication settings.

Create a 2FA requirement

  1. In the CertCentral main menu, go to Settings > Authentication Settings.

  2. Select the Two-factor authentication tab.

  3. Under Two-factor authentication settings, select Add 2FA requirement.

  4. In the Apply rule to dropdown, select the user.

  5. Under Authentication type, select one of the following:

    • Client certificate: The user must generate a client certificate in their browser the next time they sign in.

      • Supported browsers for certificate generation:

        Windows: Microsoft Edge, Google Chrome, Firefox

        macOS: Safari, Google Chrome, Firefox

    • One-time password (OTP): Under OTP authentication methods, select one or both of the following:

      • Email: CertCentral sends a temporary password to the user's email address at each sign-in

      • App/device: The user must install and initialise a supported OTP app on their mobile device

  6. Select Create requirement.

The requirement is enforced the next time the user signs in. The new requirement appears in the Applied settings table on the Two-factor authentication tab.

Related topics

: