Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Deck of Cards
idInstall Google Authenticator
Card
labelInstall Google Authenticator on Android
1To install

Find the Google Authenticator

app, go to

application in the Google Play Store

on your phone. Find the Google Authenticator application and install it. Then

.

Install and open the app.


Google Authenticator for Android icon.png

2Tap "Begin setup".

3

Then, tap Tap "Scan a barcode".

Tip

If you are missing a "Barcode Scanner", the app will prompt you to install a suggested app. Tap "Install" to the suggested "Barcode Scanner" appinstall. After installation has completed, click "Scan a barcode" once more on Google Authenticator.

4

Go to https://identity.lbl.gov/mfa to add a token and create a barcode.

You must generate a barcode at the above link to continue installation.

Click the "Add an LBL token" link.




5

Select the method by which you can receive an authorization code. This authorization code ensures only someone with your phone or access to your personal email address can issue a new token.

Select either:

  • Email: <personal email address on record>
  • SMS (text message): <personal phone number on record>

Click the "Start" button to receive a text or email with the authorization code.

6

Type the authorization code into the "Enter Authorization Code" field and give the registered device a meaningful nickname in the "Token Name" field.

Click "Add Token." Note, there is a time limit that you must complete this step by.

If time has expired, "Cancel" and retrieve a re-issued token.

7

You will see a QR code code on the screen that you must scan with Google Authenticator on your device/phone.

Note

You only have ONE CHANCE to scan this code. Do not close this window until you have successfully scanned the code.


8

If the QR Code barcode scan is successful, you will see the 6-digit OTP (One-Time-Password) on your device.

This code is valid for 30-seconds only. You must enter the token when you log in with your username and password. If you happen to take longer than 30 seconds, then use the most current auto-generated OTPAs the time limit approaches, you may see the code turn red. If you cannot enter it immediately, then wait a few seconds until the next code appears.

Card
labelInstall Google Authenticator on iPhone
1

Find the Google Authenticator application in the Apple App Store on your phone by using the Search bar (type in "authenticator").

When you find the listing, tap on the "GET" button, then tap on the "INSTALL" button.


3Open the Google Authenticator app, and tap "BEGIN SETUP".

4Tap "Scan barcode", then tap "OK" to allow the app to access the camera.

5

Go to https://identity.lbl.gov/mfa to add a token and create a barcode.

You must generate a barcode at the above link to continue installation.

Click the "Add an LBL token" link.



6

Select the method by which you can receive an authorization code. This authorization code ensures only someone with your phone or access to your personal email address can issue a new token.

Select either:

  • Email: <personal email address on record>
  • SMS (text message): <personal phone number on record>

Click the "Start" button to receive a text or email with the authorization code.

7

Type the authorization code into the "Enter Authorization Code" field and give the registered device a meaningful nickname in the "Token Name" field.

Click "Add Token." Note, there is a time limit that you must complete this step by.

If time has expired, "Cancel" and retrieve a re-issued token.


8

You will see a QR code code on the screen that you must scan with Google Authenticator on your device/phone.

Note

You only have ONE CHANCE to scan this code. Do not close this window until you have successfully scanned the code.



9

If the barcode scan is successful, you will see the 6-digit OTP (One-Time-Password) on your device.

This code is valid for 30-seconds only. As the 30-second time limit approaches, you may see the code turn red. If you cannot enter it immediately, then wait a few seconds and enter until the next valid code that will automatically appearappears.

Card
labelTest Google Authenticator
1On the OTP homepage, you may verify if the Go to https://identity.lbl.gov/mfa/ to verify if your OTP is working by clicking on the "Test" link below your device's nickname.

2

Enter the Google Authenticator's

time-sensitive

OTP from your device into the "One-Time Password" field and click "Test Now".

Note, once the time has expired, the token will be invalid.

Note

Only the newest OTP should be entered into the field for verification, expired codes will not work.

3

You should see a Success! You can test again or click "Done" message if successful.

If there is a problem, you may restart the registration or call the help desk at x4357.

Card
labelRemove Google Authenticator
Warning

Ensure you have another form of MFA setup before removing a token.

1

Go to https://identity.lbl.gov/mfa/ and identify the device that you want to permanently stop using.

Note

Ensure you have another form of OTP to use before removing your device. This does not remove the requirement for OTP on certain logins

On the OTP dashboard, you may click on "Delete" if you decide to permanently stop using the device to access LBL assets that require an OTP

.

2Click "Delete" to confirm the deletion.

...