We are pleased to announce the availability of two-factor authentication on Scaleway!
Two-factor authentication is a simple way to improve the security of your account: once enabled, you will have to supply a one-time code along with your email and password to log in on the Scaleway console. The goal is to prevent an attacker from accessing your account using a compromised password.
How does two-factor authentification improve my account protection?
When you do not use two-factor authentication, you use your email and a password to access your account. An attacker simply need to get your password to authenticate on your account.
Once two-factor authentication enabled, you authenticate with an additional code which changes automatically every 30 seconds. This code is generated with a special application on your smartphone, tablet or computer called the 2FA App.
This way, accessing your account requires both your password and a second factor: access to the 2FA App.
Enabling two-factor authentication
You can enable and disable two-factor authentication for your Scaleway account in the Account section of the Control Panel. When enabling two-factor authentication, please read carefully the information displayed to reduce the risk of being locked out of your own account.
To get started, simply click on the blue box. A modal window appears displaying some information, a QR code and a plain-text code. You can scan the QR code via any compatible 2FA Application or fill in manually the plain-text code in the app. We recommend using Google Authenticator as 2FA App which is available for both iOS and Android devices.
Once done, just fill in the code displayed in the 2FA App and click the "Enable Double-Factor authentication button.
A list of tokens appears. These tokens allow you to regain access to your account if you loose access to the 2FA App. Carefully save these token in a safe place. Each token in the list can only be used once.
Two factor in now enabled on your account!
What if I don't have access to my 2FA App?
When you enabled the two-factor authentication on your account, we provided a list of backup codes. If you do not have access to your 2FA App, you can use these backup codes to regain access to your account.
If you lost access to your 2FA App and backup codes, there are three ways to disable the two-factor authentication on your account:
- 1/ You are logged into the control panel - Go to your account section and disable the two-factor authentication
- 2/ You are logged into the Scaleway CLI - Run the following command to disable the two-factor authentication
scw 2fa off
- 3/ You have an API token - Execute an the following API call to disable the two-factor authentication
curl -H "X-Auth-Token: <YOUR_TOKEN_HERE>" https://account.scaleway.com/users/:id/2FA -X DELETE
If none of the methods above work to regain access to your account, checkout the recovery procedure.
Happy Cloud Riding,