Skip to main content

Configuring 2-Factor Authentication in 3DEXPERIENCE

By July 15, 2021July 16th, 2023No Comments

IT groups wanting to add a layer of security to the existing 3DEXPERIENCE Platform deployment can easily do so by configuring 2-Factor Authentication. In this blog, 2-Factor Authentication will be described and the procedure for configuring 3DEXPERIENCE with this added security will be explained.

With so much talk of internet security, IT groups may be wondering how to bolster security around their 3DEXPERIENCE Platform deployment. While there are many aspects to systems and applications security, one security feature is known as 2-Factor Authentication. A description of 2-Factor Authentication and how to configure 3DEXPERIENCE to enable this security feature will be explained.

What is 2-Factor Authentication

2-Factor Authentication (2FA), sometimes referred to as two-step verification, multi or dual-factor authentication, is a security process in which application users provide two different authentication factors to verify themselves. Usually, the two factors are the traditional username and password followed by a second factor using an application that generates a random key every 30 seconds and this key is needed to complete the login to the application.

The 3DEXPERIENCE Platform supports any TOTP-compliant application like Google Authenticator or 2FAS Authenticator. TOTP means Time-based One-Time Password. More information can be found here. Setting up 2-factor authentication is a simple procedure that involves the 3DPassport security setup followed by the user securing their login using one of the supported authenticators.

3DPassport Configuration

The first step involves logging in as an administrator, then accessing the 3DPassport Control Center widget as shown below. Selecting the Security option, several optional settings appear, select 2-Factor Auth.

There are 3 settings related to 2-factor authentication and they provide a bit of flexibility that enables this security feature to be implemented either strictly or casually. The first setting simply allows users to voluntarily use 2-Factor Authentication. This article revolves around using only this setting and once enabled users can configure this feature.

The next two settings will apply enforcement and flexibility. Force users to use 2-Factor Authentication will require all users to setup their own 2-factor authenticator. Allow users to define trusted computers for 2-Factor Authentication purposes is useful when users work from more than one computer.

Now that the feature is enabled on the platform, a user simply needs to access their profile as shown below.

From the Profile interface select Account, then 2-Factor Authentication.

On the next screen select Activate to enable 2-Factor Authentication.

Next, the user will establish three security questions in case there is a challenge. Once configured select Save. (Answers below have been redacted.)

Upon saving the security questions, 3DPassport will generate a QR code that can be scanned by the mobile application that will be used to generate the 2-factor authentication security code. Once scanned and configured on the mobile device, enter the code and select Validate.

After selecting Validate (above), the confirmation is shown below that provides information on how to deactivate and transfer the authentication.

When the setup has been successfully completed, the user login screen will be followed with the following interface, to complete the 2-Factor Authentication in order to login to the 3DEXPERIENCE Platform.

For more information on setting up 2-Factor Authentication feel free to contact Razorleaf.

Close Menu