Two-factor authentication in Splynx

Splynx always cares about security. Information has to be stored and processed in a secure way. Passwords inside our database are encrypted, and all codes are encrypted as well. But what will happen if one of your administrators has a poor password and the wrong people gain access to your Splynx system?

To prevent this we‘ve introduced the support of two-factor authentication of administrator login to the Splynx ISP Framework. What does this mean? It means that after entering your username and password you have to enter a temporary code created by a special application in your mobile phone. This app can be either Google Authenticator, Authy or 1Password. This is the most secure login approach in today’s web world.

At the first step, we create a new admin account that is given to one of our network administrators.

new_admin

Then, when we are in Splynx under the “newadmin” account, we enable 2-factor authentication.

enable_2_factor

Open your App in your mobile phone (here it’s a Google Authenticator) and scan the QR code

Scan_QR_code

An instance of authentication for Splynx was created in your app, now use it :

Authenticator

Next time if “newadmin” tries to log in to the Splynx system, he will always be asked for one-time code.

 

login

 

How to reset admin password

By default, after installation you should receive two super admin passwords.

Administrator added, login: admin, password: XXXXXXXX
Administrator added, login: splynx, password:XXXXXXXX

If you lose this passwords, you can restore them from command line.

Open script folder:

cd /var/www/splynx/system/script/
Run command ./passwd and receive help message

IspFramework passwd script, version: 1.0.dev

Usage:
./passwd admin –login=<admin> –password=<password>
Change password for administrator <admin>

./passwd customer –login=<login> –password=<password>
Change password for customer <login>, you can enter :ALL: for all customers , password not required

Now we can change password for admin login with command:

./passwd admin --login=admin --password=NEW_PASSWORD

Check it out on video