Setting up and using two-factor authentication in Shift4 Customer Hub

  • Updated
Artikel drucken Artikel drucken

Content: This article describes how to set up two-factor authentication. This increases account security by requiring an additional code from an authentication app after entering your email and password.


What is Two-Factor Authentication?

Two-factor authentication (2FA) is a security method that adds a second layer of identity verification. Instead of relying solely on a password, 2FA requires your identity to be confirmed using two different factors. It helps prevent unauthorized access and reduces the risk of security breaches. (Source: https://www.bsi.bund.de)

Two-factor authentication in "Shift4 Customer Hub" allows you to stipulate the use of an authentication tool to access the user account. Once the authentication software (e.g., Google Authenticator) is configured for "Shift4 Customer Hub," you log in to "Shift4 Customer Hub" with your usual credentials (email address and password). After that, you will be prompted to complete a second verification step. By setting up Google Authenticator, a time-limited code is provided in this app, which you enter in the corresponding field on the "Shift4 Customer Hub" homepage. You will then have access to the "Shift4 Customer Hub" account.

Setting Up Two-Factor Authentication

You can access the function to set up two-factor authentication via the navigation list on the left. Click on the "Profile" section and select the "Two-Factor-Authentication" subcategory.

Set up two-factor authentication for Lighthouse
The screenshot shows the "Two-Factor-Authentication" subcategory under the "Profile" section in the navigation on the left. The exact position in the navigation list and the "Setup Two-Factor-Login" button are highlighted.


Click the blue "Setup Two-Factor-Login" button to start the configuration.
A separate "Two-Factor Auth Setup" window will open. Here, you are first offered the option to download the "Google Authenticator" app from "Google Play" and the "App Store." We recommend using "Google Authenticator." To use the "Google Authenticator" app, you need a mobile device. Install the app on this device. By clicking on one of the two stores, you will be provided with more information about the "Google Authenticator" app.

Note: To activate two-factor authentication, you can also use other authentication apps instead of "Google Authenticator." The following step-by-step instructions refer to using the "Google Authenticator" app. 

 

Start two-factor authentication configuration Download app options
The screenshot shows the download options for the "Google Authenticator" app in the "Two-Factor Auth Setup" window. You can choose between the "App Store" and "Google Play."


-> Switch to mobile device

Now install the "Google Authenticator" app on your mobile device. Once the installation is complete, open "Google Authenticator." On the app's homepage, you will see that no Google Authenticator codes have been added yet. By clicking the "Add code" button, you start the configuration. 

App Google Authenticator add code 2FA Lighthouse
The screenshot shows the option to add a code within the "Google Authenticator" app. By clicking the "Add code" button, the configuration starts.


Now, two options are provided for entering the code in the authentication app. You can either scan a QR code or manually enter the setup key.

 

Choose to enter the code by scanning a QR code or manually entering the setup key in the "Google Authenticator" app
This screenshot shows the two different ways to enter the setup key within the "Google Authenticator" app. You can choose "Scan QR code" or "Enter setup key."


-> Switch to Shift4 Customer Hub

In the open "Two-Factor Auth Setup" window in "Shift4 Customer Hub," click the "Next" button. 
The window will now display a QR code and the manual setup code. 

 

Display of QR code and setup key in the Two-Factor Auth Setup window in Lighthouse
The screenshot shows the QR code and the setup key for use in the "Google Authenticator" app.

-> Switch to mobile device

Option: Scan QR code 

In the "Google Authenticator" app, select "Scan QR code." The "Google Authenticator" app will need access to your device's camera. Once camera access is granted, scan the QR code displayed in the "Two-Factor Auth Setup" window in "Shift4 Customer Hub."


Option: Enter setup key

In the "Google Authenticator" app, select "Enter setup key." In the "Account name" field, enter the name of the application for which this two-factor authentication is being set up. In this example, for instance, "Portal Shift4 Customer Hub." 
In the "My key" field, enter the 32-character code displayed below the QR code in the "Shift4 Customer Hub" window. 
For key type, select "Time-based." Then click the "Add" button. 

 

manual entry of setup key
This screenshot shows the window within the "Google Authenticator" app for entering the setup key. The "My key" field, where the 32-character code is entered, is highlighted. The "Account name" and key type fields are also shown.


The “Google Authenticator” app will now display a 6-digit code. This code is valid for 30 seconds, after which a new code will be displayed. On the right side, the blue circle that is gradually fading away indicates how long the code is valid. 

 

Display of verification code in the Google Authenticator app
This screenshot shows the 6-digit verification code in the "Google Authenticator" app, which is entered into the "Verification Code" field in "Shift4 Customer Hub." This verification code is highlighted. The validity of the code is also shown by a blue circle, which is also highlighted.


-> Switch to Shift4 Customer Hub

Enter the 6-digit code into the "Verification Code" field in Shift4 Customer Hub. Then click the "Next" button. 

 

Enter verification code in the "Verification Code" field in Lighthouse
This screenshot shows the entry of the verification code from the "Google Authenticator" app into the "Verification Code" field in "Shift4 Customer Hub." This field is highlighted.



Two-factor authentication is now set up.  

 

Recovery Keys

The window will display five "Recovery Keys." Save these. 

Display of five recovery keys after setting up two-factor authentication.
This screenshot appears after successfully setting up two-factor authentication. It offers five "Recovery Keys" to save.

 

If access to the authentication device is lost, e.g., if the phone on which the "Google Authenticator" app for "Shift4 Customer Hub" was configured is lost, one of the five "Recovery Keys" can be used to log in to "Shift4 Customer Hub." At the point in the login process where the 6-digit code from the "Google Authenticator" app should be entered, select "Use Recovery key" and enter one of the five codes there. Each of these codes can only be used once. 

Option to enter a recovery key Use Recovery key
The screenshot shows the option to enter a recovery key if access to the authentication tool is lost. The "Use Recovery key" button is highlighted on the "Shift4 Customer Hub" page where the verification code is entered as part of two-factor authentication.

 

Complete the setup of two-factor authentication by clicking the "Done" button in the Shift4 Customer Hub window.

You will automatically be logged out of "Shift4 Customer Hub" to apply the saved settings.


Logging in with Two-Factor Authentication 

After two-factor authentication has been set up, enter your login credentials (email address and password) on the "Shift4 Customer Hub" login page.

Then click the blue "Sign in" button. The prompt to enter the 6-digit code will then appear. Open the "Google Authenticator" app on your mobile device and enter the 6-digit code displayed there into the "Enter 6-digit code" field on the "Shift4 Customer Hub" page. Then click the "Submit" button. 

 

Enter the 6-digit code for two-factor authentication after login.
This screenshot shows the two-factor authentication step in the login process in "Shift4 Customer Hub." The entry of the 6-digit code appears after entering the login data (email address and password). The "Enter 6-digit code" field is highlighted. The code from the "Google Authenticator" app is entered here.


Generating Recovery Keys

After a successful login, if you open the "Two-Factor-Authentication" category under the "Profile" section, you will see the successful activation indicated by the blue "Two-Factor Authentication Enabled" switch. 

By clicking the "Generate Keys" button, recovery keys are created. These are offered for saving in the window that opens on the right. By clicking the "Done" button in this window, the "Recovery Keys" are activated and can be used during the login process in "Shift4 Customer Hub" if access to the authentication app is lost (see section "Recovery Keys").

 

Deactivating Two-Factor Authentication

To deactivate two-factor authentication, open the "Two-Factor Authentication" category under the "Profile" section in the left navigation. By clicking the blue "Two-Factor Authenticator Enabled" switch, it will be deactivated immediately. You will be logged out of "Shift4 Customer Hub" right away. 

Activated Two-Factor Authentication in profile settings with 'Generate Keys' button.
This screenshot shows the "Two-Factor Authentication" category under the "Profile" section with the activated blue "Two-Factor Authentication" switch highlighted. The "Generate Keys" button for generating recovery keys is also visible.

 

At the next login, you will only need to enter your "email address" and "password." 

 

 

Related to

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request

Haftungsauschluss

Die Vectron Systems AG übernimmt keinerlei Gewähr für die Aktualität, Korrektheit, Vollständigkeit oder Qualität der bereitgestellten Informationen. Haftungsansprüche gegen die Vectron Systems AG, welche sich auf Schäden materieller oder ideeller Art beziehen, die durch die Nutzung oder Nichtnutzung der dargebotenen Informationen bzw. durch fehlerhafte oder unvollständige Informationen verursacht wurden, sind grundsätzlich ausgeschlossen, sofern seitens der Vectron Systems AG kein nachweislich vorsätzliches oder grob fahrlässiges Verschulden vorliegt.

Gender-Hinweis

Ausschließlich zum Zweck der besseren Lesbarkeit wird auf eine geschlechterspezifische Schreibweise sowie auf eine Mehrfachbezeichnung verzichtet. Alle Personenbezeichnungen sollen dennoch als geschlechtsneutral angesehen werden.