If your organization requires a higher level of security, 2FA Enforce upon logging in GEVME platform is required. 


What is 2-step verification?


2-step verification adds a second login authentication and confers an additional layer of security to your GEVME user account.


What do I expect with 2FA?


If you have set up 2 Step verification since the first time accessing GEVME, after filling in your email address and password, you will see the following screen: 

1. Google Authenticator

This verification code is generated from Google Authenticator Application. You can download it from here: 

  • Google Authenticator on Google Play 
  • Google Authenticator on the App Store iTunes Apple


After the download is completed, open the mobile app and you will see: 


a. If you are logging through https://www.gevme.com/ : take the code from GEVME. 

b. If you are logging through https://gems.gevme.com/ : take the code from GEVME (GEMS)

Notice the time will running out (c) and make sure to fill in the code before that. 


Note: ensure that your phone and computer (used to access GEVME) have the same date and time zone. Follow these steps to make sure your Google Authenticator app’s time is synced correctly. 


Launch the app, tap the Menu button (three dots), and go to Settings > Time Correction for Codes > Sync now.

Read more about Setup 2 Steps Verification here. 


2. Try Another Way

If you don't have the Authenticator App yet, you can log into GEVME by clicking on "Try another way", you will see another screen:

Choose the option to "Use a backup code that you printed or saved"

This is one of the 10 verification codes provided to you from the first time you set up 2 step verification to access GEVME account. 


* You can generate a new list of codes after logging into your account, choosing “Admin Console” on top right corner. Under "Account", choose "Security": 

Do keep this list safe, and write off the codes you have used previously to keep track.

 

How to set up 2FA through Authenticator App?


You can use an authenticator app as a default method of 2-step verification for your organization. Follow the below steps to setup: 


1. Download Authenticator App:


a. Google Authenticator App: 

 

Google Authenticator on Google Play 


Google Authenticator on the App Store iTunes Apple



b. Authy – alternative option aside from Google Authenticator App 


Aside from using Google Authenticator App, user can consider another Authenticator App: Authy 


•    It helps with the phone switch: Google Authenticator App is tied to the one mobile device at a time, Authy’s multiple-device functionality, your 2FA tokens automatically sync to any new device you authorize. And, if a device is lost, stolen, or retired, you can deauthorize it from any authorized device. 


•    Authy is available for Android, iOS  and Chrome extension 



2. Activate 2FA

Click on the user icon on the top right-hand corner of the screen, Select “Admin Console”. Under "Account" or "Organisation" choose "Security":


3. Click on "Turn on" 2 Step Verification, and continue with setting up the Authenticator: 




4.  Scan barcode using Google Authenticator app, and enter the verification code before the code times out:



5. Code accepted and automatically become the default. 



If you make this as default log-in method, the next time logging in GEVME account, you will be using Authenticator App instead of receiving SMS. 


Note: if you use Google Authenticator app, ensure that your phone and computer (used to access GEVME) have the same date and time zone. Follow these steps to make sure your Google Authenticator app’s time is synced correctly. 


Launch the app, tap the Menu button (three dots), and go to Settings > Time Correction for Codes > Sync now.





2. Backup Codes: 


Once you finish setting up the 2FA, for your account, you will see a screen of “2 Step verification Initialization”, showing a list of Backup Codes. You can use these backup codes to login to your account in case you don't have access to your authentication device. 



In your Security portion, you can also see the backup codes and you can generate new codes to keep for future use. 

Do note that if you generate new codes, the old codes will no longer be effective. It is recommended to keep a backup codes list separately, in case SMS OTP and Google Authenticator don't work.