You can now protect your Plivo user credentials using Two-Factor Authentication (2FA). 2FA provides additional level of security by asking for a unique verification code sent to your mobile, when you login into your account. Using 2FA to secure your account is optional, but we highly recommend doing so. This helps better protecting your customer and transaction information even when your user credentials are compromised.
We currently support text messaging (SMS) as the primary method for 2FA, and plan to add support for voice calls and mobile app based one-time passwords (OTPs) going forward.
How 2FA works on the Plivo console
Currently, 2FA is applicable every time a user logs in to their account. After the user enters a username and password, they are requested to enter a verification code if 2FA is enabled for the user. A 6-digit verification code is sent to the user’s verified phone number via an SMS, and this verification code should be entered in the below screen.
Enabling 2FA for your Account
Two-Factor Authentication can be enabled from your account settings. ‘User Profile’ is a new section added to the console to manage a user’s profile and settings. In order to enable 2FA, a verified phone number should be available on the user’s profile.
A verification process is triggered if a verified phone number is not available. To verify the phone number, an OTP (sent to your phone number) is to be entered in the screen below.
Enable 2FA to keep your accounts secure. Give it a try and let us know if you have any questions by writing to us at firstname.lastname@example.org