Configuring the two-factor authentication settings

Configuring the DS-Client : Configuring the two-factor authentication settings

Two-factor authentication prevents accidental or unauthorized deletion of backup sets and backup data. When this feature is enabled, only authorized users can delete a backup set or backup data or assign a retention rule to an existing backup set while logged on to the DS-Client. Before performing these tasks, an authorized user is required to enter an authentication code that the DS-System generates.

If your service provider has already configured the DS-Client to use two-factor authentication, you must configure the two-factor authentication settings for the DS-Client, which include the list of authorized users and their email addresses for receiving authentication codes from the DS-System. You can manually add the users or import a list of users.

NOTE: You must be a DS-Client administrator to configure the two-factor authentication settings for the DS-Client.

To configure the two-factor authentication settings:

1. On the Setup menu, click Two-factor Authentication.

2. In the Two-factor Authentication Settings dialog box, do one of the following:

• To add a user, click Add.

• To modify the details of a user in the list, select the user and click Modify.

• To remove a user, select the user and click Remove.

3. In the Add User or Edit User dialog box, do the following:

a) In the User name box, type the name of the user that you want to authorize.

NOTE: For successful authorization, the name must represent a valid existing user account on the DS-Client computer.

b) In the Domain box, select the domain to which the user belongs.

c) In the Email address box, type the email address associated with the user. This is the email address where an authorization code will be sent when the user attempts to delete a backup set or backup data or assign a retention rule to an existing backup set.

d) Click OK.

4. To import a list of users, do the following:

a) Create a text file that lists each new user on a separate line. For each user, list the user name, the domain, and the email address, separating each item with a comma. Then save the text file. For example:

user_example,example.com,user_example@example.com

b) In the Two-factor Authentication Settings dialog box, click Import.

c) In the file browser, select the text file that contains the list of users, and then click Open.

d) In the Two-factor Authentication Settings dialog box, verify that the user name, domain, and email address of each user that have been imported to the list are correct.

e) If the details of a user are inaccurate, return to step 2 to modify the details of the user.

5. Click Forward to DS-System.

6. In the Two-factor Authentication Validation dialog box, do the following:

a) In the Authentication Code box, type the authentication code that you have received from the DS-System, and then click Validate.

NOTE: The authentication code is sent to the email address where you usually receive notifications from the DS-System. The code is valid for two hours. To request an authentication code be resent to you, click Resend.

The users listed in the Two-factor Authentication Settings dialog box are authorized to delete backup sets and backup data and assign retention rules.

7. To export the list of users in the Two-factor Authentication Validation dialog box to a text file, click Export and save the file.

8. When you are finished, click Close.