How to Enable Two-factor Authentication in Netsparker Enterprise

Enable two-factor authentication on your Netsparker Enterprise account to add an additional layer of security.

You can enable two-factor authentication, or as also known two-step verification, to add an extra layer of security to your Netsparker Enterprise account. When you enable two-factor authentication, when logging in to Netsparker Enterprise you will be asked for your password and a one-time code.

How to Enable Two-factor Authentication
  1. From the main menu, click Your Account, then Two-factor Authentication, then Enable two-factor authentication.

  1. Install a two-factor authentication app on your phone. Google Authenticator is a popular choice. You can download it from Google Play or the App Store.
  2. Launch the app on your phone, and use it to scan the QR Code displayed on your Netsparker Enterprise dashboard, as illustrated.

  1. Once the code is scanned, the mobile authenticator app displays a Netsparker Enterprise verification code as illustrated. (This is the Google Authenticator app.)

  1. In the Current Password field, enter your Netsparker Enterprise password.
  2. In the Please enter the 6-digit code generated by the application field, enter the verification code displayed in your mobile authenticator app.
  3. Click Configure to finalize the setup.

Two-factor Authentication Recovery Codes

Once you enable Two-factor Authentication in Netsparker Enterprise, the service generates ten Recovery Codes, as illustrated.

The next time you log in to Netsparker Enterprise, you will be asked for your email address and password, as usual. Next, you will be asked for the one-time verification code from your mobile app. If you are unable to access the mobile app during the login process, use one of the Two-factor Authentication Recovery Codes.

Download or copy the Recovery Codes to a secure place where only you and other trusted users can access them. Recovery Codes are needed only when you need to log in but do not have access to the two-factor authentication mobile app to generate a one-time code.

How to Use Recovery Codes
  1. Log in to your Netsparker Enterprise account using your username and password. If you have two-factor authentication enabled, the Two-factor Authentication window is displayed.

  1. Click the Can’t access your phone? link. The Recovery Code field is displayed.

  1. Enter your Recovery Code.
  2. Click Sign In.

About the Author

Ferruh Mavituna - Founder, Strategic Advisor

Ferruh Mavituna is the founder and CEO of Invicti Security, a world leader in web application vulnerability scanning. His professional obsessions lie in web application security research, automated vulnerability detection, and exploitation features. He has authored several web security research papers and tools and delivers animated appearances at cybersecurity conferences and on podcasts. Exuberant at the possibilities open to organizations by the deployment of automation, Ferruh is keen to demonstrate what can be achieved in combination with Invicti’s award-winning products, Netsparker and Acunetix.