Skip to main content
Druva Documentation

Configure Secured Login

Overview

Secured Login is a two-factor authentication method to verify the administrator's identity by using a combination of two different authentication steps. It provides an additional layer of login security when administrators access their accounts from any device, and ensures that only authorized access is permitted.

When Secured Login is enabled for your Druva account, at every login, the administrators across your organization are required to enter a time-based One Time Password (OTP) in addition to their login password. The OTP is sent to the administrator's registered email address. Only an administrator who has a valid password, as well as access to the OTP over the registered email address can access the account. 

  • Only a Druva Cloud administrator can enable and disable the Secured Login for an organization. 
  • You cannot configure Secured Login for your organization if you have already configured Single Sign-On for the administrators across your organization. 
  • If you want to configure Secured Login for administrators then disable Single Sign-On for administrators. See, Set up Single Sign-On for more information

Secured Login activation workflow

The following section and the illustration details the workflow to enable Secured Login for your organization:

1Workflow.png

1.pngInitiate activation: 

As a Druva Cloud administrator, initiate the Secured Login activation from the Druva Cloud Platform Settings. An activation OTP is sent to your registered email address. 

2.pngAuthorize activation:

Verify your identity using the activation OTP that was sent to your registered email address.  

3.pngComplete activation: 

Upon successful authentication, the Secured Login is activated for your organization. All the administrators across your organization are notified with an email about the Secured Login activation. At every next login, the administrators are required to authenticate themselves using the OTP. 

Secured Login is an email-based two-factor authentication process. Administrators need access to the OTP emails that are sent to their registered email address at every login attempt. Ensure that emails from Druva are not blocked through the IT policy in your organization.

Enable Secured Login for your organization

To enable Secured Login for administrators across your organization, do the following steps:

  1. Click the Druva logo Druva_Icon.png to access the Global Navigation Panel > Druva Cloud Settings > Access Settings. The Access Settings window appears.
  2. In the Password Policy and Secured Login section, click Enable Secured Login. The Secured Login activation and login workflow window appears. Click Enable Secured Login to proceed.
  3. On the Activate Secured Login for administrators window, enter the activation OTP that is sent to your registered email address and click Verify.
  4. The Secured Login is enabled for your organization. 
  5. A confirmation email about Secured Login activation is sent to all the administrators across your organization. 

    The One Time Password (OTP) is sent to the administrator's registered email address from the next login. Ensure that the administrators receive emails from Druva on their registered email address. 

    At every next login, the administrators are required to authenticate their identity through OTP that is sent to their registered email address.

    Additionally, the administrators are also sent a batch of ten Backup CodesBackup Codes serve as a substitute for the OTP and should only be used when administrators are experiencing issues receiving emails from Druva.      
  • A Backup Code once utilized cannot be reused. Ensure that Backup Codes must be used only when you are experiencing issues with receiving OTP emails from Druva.
  • It is recommended that you resolve the issues associated with the non-receipt of emails from Druva.

Disable Secured Login for your organization

To disable Secured Login for administrators across your organization, do the following steps:

  1. Click the Druva logo Druva_Icon.png to access the Global Navigation Panel > Druva Cloud Settings > Access Settings. The Access Settings window appears.
  2. In the Password Policy and Secured Login section, click Disable Secured Login. The Disable Secured Login for administrators window appears.
  3. Enter the deactivation OTP that is sent to your registered email address and click Verify.
  4. Secured Login is disabled for your organization.