Configuring a two-factor authentication secret key at Kaspersky Security Center Web Console sign-in

The first time you sign in to Kaspersky Security Center Linux 16.1 or later, the window for configuring two-factor authentication opens.

To configure two-factor authentication for your account:

1. Install any application that supports the Time-Based One-Time Password algorithm (TOTP) on the mobile device or computer, such as:
   • Google Authenticator
   • Microsoft Authenticator
   • Bitrix24 OTP
   • Yandex ID
   • Avanpost Authenticator
   • Aladdin 2FA
   • Rutoken OTP

   We strongly do not recommend installing the authenticator app on the same device from which Administration Server is managed.

2. Ensure that the time on the device with the authenticator app and the time on the device with the Administration Server are synchronized to UTC. For better accuracy, we recommend using the same NTP servers throughout your infrastructure.
3. Generate a one-time security code by using the authenticator app on the mobile device or computer. To do this, perform one of the following actions:
   • Enter the two-factor authentication secret key in the authenticator app manually.
   • Click View QR code and scan the QR code by using the authenticator app.

   A one-time security code of 6 digits will display on the mobile device.

   

   Configuring a two-factor authentication secret key at Kaspersky Security Center Web Console sign-in

4. In the Two-factor authentication window, specify the one-time security code generated by the authenticator app, and then click the Check and apply button.

   Rutoken OTP configuration

   If you use Rutoken OTP, you need an Android mobile device with the Rutoken OTP application installed. The Android mobile device must the following requirements:

   • Operating system is Android 7 or newer.
   • NFC module is available and enabled.

   In the Rutoken OTP application, you have to configure the following parameters:

   • Scan the QR code displayed in the two-step configuration wizard.
   • Set the time interval to 30 seconds.
   • Select SHA1 as the algorithm.

   To configure Rutoken OTP:

   1. Put the Rutoken OTP device next to the mobile device with the NFC module.
   2. In the Rutoken OTP application, press Connect token.
   3. In the Rutoken OTP application, press Configure settings, and then press Save secret key.

      If the token is successfully connected to the mobile device, the Rutoken OTP application shows the following status messages:

      • Token is connected.
      • Settings are configured.
      • Secret key is saved.
   4. On the Rutoken OTP device, press the button.

      A security code is displayed on the device.

   5. In Kaspersky Security Center Web Console, in the two-step verification window, enter the security code.

Two-factor authentication is configured for your account. You are able to access the Administration Server in accordance with your rights.

If two-factor authentication configuration is not available to you, contact a user who has the Modify object ACLs right in the General features: User permissions functional area and configured two-factor authentication to add your account to the two-factor authentication allowlist.

Page top