Back to binalyze.com

Two-factor authentication (2FA)

In Binalyze AIR, two-factor authentication (2FA) is a security feature designed to enhance user account protection by requiring two forms of verification when logging in. This adds an additional layer of security on top of the traditional username and password. With 2FA enabled, even if a user's password is compromised, unauthorized access to the account is significantly harder to achieve.

Some key points about 2FA in Binalyze AIR:

  1. Compatibility with LDAP Users: Binalyze AIR supports 2FA for LDAP users. Initially, 2FA for LDAP users could only be enforced if 2FA was required for all users, and it had to be configured outside of account settings. However, recent updates have made it possible to configure 2FA for LDAP users directly from the account settings within AIR, simplifying the process.

  2. User Flexibility: Administrators can enforce 2FA for all users, ensuring a uniform security policy across the organization. This makes it easy to improve overall security by requiring all users to authenticate using an additional method, such as a one-time password (OTP) sent to a mobile device or an authenticator app.

  3. Enhanced Security Posture: By enabling 2FA, Binalyze AIR significantly reduces the risk of unauthorized access, even in the event of compromised credentials. This is a critical step in safeguarding sensitive investigation data and maintaining the integrity of digital forensics operations.

  4. User-Friendly Configuration: The integration of 2FA in Binalyze AIR is designed to be user-friendly, making it easy for administrators to enable and enforce 2FA without complex configuration steps.

Troubleshooting 2FA Issues: Time Synchronization

If you are experiencing issues with Two-Factor Authentication (2FA) in AIR, it may often be due to time synchronization problems on your system. Ensuring your system's time is correctly synchronized with an NTP (Network Time Protocol) server is crucial for the proper functioning of 2FA.

Steps to Check Time Synchronization:

  1. Run the timedatectl Command: Open a terminal and execute the following command:

    timedatectl

  2. Verify the Output: After running the command, check the output for the following two lines:

    • System clock synchronized: yes

    • NTP service: active

    Here’s an example of what the correct output should look like:

  3. What to Do if the Time is Not Accurate: If your system clock is not synchronized or the NTP service is not active, this could be the root cause of your 2FA issues. To resolve this, you may need to synchronize your system's time using NTP.

How to Synchronize Your System Time:

  1. Enable NTP Synchronization: You can synchronize your system’s time by running:

    sudo timedatectl set-ntp true

  2. Re-check the Time Status: After enabling NTP, re-run the timedatectl command to ensure that the system clock is now synchronized and the NTP service is active.

By ensuring your system’s time is accurate and synchronized, you can help prevent potential issues with 2FA in AIR. If the issue persists even after correcting the time, please contact our support team for further assistance.

PreviousSSL Certificate Management in Binalyze AIRNextUpdating AIR

Last updated