Prerequisite
The CAM portal provides two-factor authentication (2FA). Two-factor authentication is a method of confirming a user’s claimed identity by utilizing a combination of two different factors:
(1) Something they know.
(2) Something they have or something they are.
CAM Two-Factor Authentication
CAM authenticates users using:
-
Username/Password (Something you know)
-
A one-time password (OTP) - the one-time password support generation by Google Authenticator or FreeOTP (something you have)
MFA login is a per-organization feature. Once MFA is enabled for an organization then all users within that organization are required to use the MFA feature. The default operation is currently standard username and password; use of the MFA feature must be requested by contacting CloudSphere support.
Usage
Open the browser and navigate to the CAM URL (e.g. https://<env>.cloudspshere.com) for your tenant in the CloudSphere CAM application.
Enter your organization name.
First-time login
If this is the first time to log in using MFA, you will be prompted with the “Mobile Authenticator Setup“ dialogue. The MFA is enabled by using an authenticator app installed on your phone. The supported apps (FreeOTP or Google Authenticator) can be downloaded from the App store associated with your phone type (Apple or Android)
-
Download Google Authenticator for your phone.
-
Launch Google Authenticator, and click Scan a QR code.
-
Accept with OK that Authenticator is allowed to access the camera to scan the QR code.
-
The CAM login page setup guide shows you the QR code that you are to scan with your phone.
-
Point the camera on your phone, while in Google Authenticator, to scan the QR code.
-
The Authenticator app will now automatically configure two-factor authentication for you.
-
When completed, you will have a code generator for CloudSphere CAM in Google Authenticator on your phone.
-
Insert the OTP generated by your Google Authenticator app into the ‘One-time password’ field
-
Provide a description of the device on which the Google Authenticator is installed e.g. My Work Phone (Android S10)
-
Press Submit and if the request is authenticated, you will be logged into the CAM portal.
Logout from your account is executed in the normal manner.
Subsequent login (post-registration)
Now, each time you log into the account you've connected with Google Authenticator, the account login will ask you to enter a verification code.
Simply open the Google Authenticator app, and the app will generate a new, randomized code for you to enter.