Skip to main content

Two-Factor Authentication (2FA)

Add an extra layer of security to your Pluton instance by enabling Two-Factor Authentication (2FA). When enabled, users must provide a verification code from an authenticator app in addition to their password when logging in.

Prerequisites

  • An authenticator app installed on your mobile device (e.g., Google Authenticator, Authy, Microsoft Authenticator)
  • Pluton PRO license

Enabling 2FA

  1. Navigate to SettingsGeneral tab
  2. Locate the Enable 2FA toggle
  3. Toggle it on
  4. A confirmation dialog appears asking if you want to enable 2FA
  5. Click "Yes, Enable 2FA"
  6. The 2FA Setup modal opens

Pluton 2FA Setup Screen

Setting Up Your Authenticator App

After clicking "Yes, Enable 2FA", the setup modal displays:

  1. Scan the QR Code: Open your authenticator app and scan the displayed QR code
    • Alternatively, manually enter the Setup Key shown below the QR code
  2. Your authenticator app will start generating 6-digit codes that refresh every 30 seconds
  3. Enter the current 6-digit code from your authenticator app into the verification field
  4. Click "Verify & Enable 2FA"

Saving Recovery Codes

After successful verification:

  1. A success message confirms 2FA has been enabled
  2. 10 recovery codes are displayed
  3. Save these codes securely - they are required to access your account if you lose your device
  4. Recovery codes are shown only once and cannot be retrieved later
  5. Close the modal when you have saved your recovery codes
warning

Store your recovery codes in a secure location separate from your device. If you lose access to your authenticator app and don't have recovery codes, you will be locked out of your account.

Logging In with 2FA

Once 2FA is enabled:

  1. Enter your username and password on the login page
  2. After successful password verification, you are redirected to the Two-Factor Authentication page
  3. Open your authenticator app
  4. Enter the current 6-digit code
  5. Click "Login"

Disabling 2FA

To disable 2FA:

  1. Navigate to SettingsGeneral tab
  2. Toggle Enable 2FA off
  3. Save your settings

Using Recovery Codes

If you lose access to your authenticator app:

  1. On the Two-Factor Authentication login page, enter a recovery code instead of the authenticator code
  2. Each recovery code can only be used once
  3. After using a recovery code, set up 2FA again with your new device