Overview
Two-Factor Authentication (2FA) adds an additional layer of security to Registrar Console accounts. The .CO Registry supports TOTP-based 2FA using any compatible authenticator app.
Compatible Authenticator Apps
Any authenticator app that implements Time-Based One-Time Password (TOTP) is supported, including Google Authenticator, Microsoft Authenticator, Authy, and 1Password.
Enabling 2FA for Your Account
- Log in to the Registrar Console at https://registrar-console.registry.co/.
- Navigate to your account/profile settings.
- Locate the Two-Factor Authentication section.
- Scan the QR code with your authenticator app.
- Enter the 6-digit TOTP code to confirm setup.
Enforcing 2FA for All Users
Administrator and Manager accounts can enforce 2FA for all user accounts associated with the Registrar. To do this, navigate to the Account Settings page and enable the 2FA enforcement option. All users will be required to set up 2FA at their next login.
Best Practice
Registrars are strongly encouraged to enable 2FA on all user accounts, particularly Administrator and Manager accounts which have elevated privileges. Create a separate user account for each employee to enable individual accountability.
Related Articles
- Setting Up Your Registrar Console Access
- Understanding Registrar Roles and User Access Levels