Up: Security

Two Factor Authentication

We offer two factor authentication as a way to keep your account more secure.

An account name and the associated password are required to log into an account. Two factor authentication adds an extra level of security to the login process. After entering the account name and password, you will need to enter a single-use authentication code.

The code can be generated using a TOTP compatible authentication app, or a code can be sent by SMS (text) to a phone number that can receive SMS.

 There are free TOTP apps like Google Authenticator (which is available for Android and iOS) and  Authy (for mobile and desktop). Password management apps often support TOTP. If you want to use a YubiKey, please visit their support page for instructions.

If a code is sent by SMS, the message may be subject to messaging fees from your telephone provider.

Codes cannot be sent by e-mail and cannot be sent by a voice phone call.

Please follow these steps to turn on two factor authentication:

  1. Log into the Domain Name Management System
  2. Select to use an authentication app, to use the Registrant phone number, or enter a new phone number
  3. Click Enable

If you selected to use an authentication app, we will display a QR code. Scan the code in the authentication app and enter the six digit number to complete the two factor authentication set up.

You may want to save or print a copy of the QR code and store it in a safe place.

If you selected a phone number, we will send an authorization code, and you can enter the code on the next page to complete the two factor authentication set up.

TOTP App Notes

Google Authenticator stores the settings locally on the phone. If you change phones, the settings will not be copied to the new phone. If you saved the QR code, you can scan it on the new phone. If you did not save the code, we would need to disable two factor authentication.

1Password has a guide for setting up two factor authentication.

LastPass has a guide for setting up Two Factor Authentication. Please note: setting this up requires logging in to LastPass through their website, not the desktop app.

If You Lose or Replace Your Phone

With SMS authentication, as long as your phone number does not change, you can get the SMS codes. If your new phone has a new number, we will need to disable two factor authentication.

With many authentication apps, you will not be able to get the codes unless you scan the QR code again. If you printed or saved the code previously, you can rescan it. If you cannot rescan the code or did not scan it into a second device, we will need to disable two factor authentication.

If you use 1Password as your TOTP app, you can sign into the app on a new phone and you can get the codes on the new phone.

Disabling Two Factor Authentication

If you can log in, you can disable it from Preferences. If you are not getting the codes, we will need to verify with the Registrant to disable two factor authentication. We would want to call the Registrant phone number to verify. If codes are sent by SMS to a different phone number, we can call that number to verify.

If calling is not possible, please contact us for other options on how to verify that you are authorized to disable two factor authentication.