First, we enter the main Yandex account, if it exists. If it does not exist yet, then you can always create it after a simple registration.

Enabling and configuring two-factor authentication

So, in your Yandex account, click on the account and go to the section The passport. Then, in the section Access control press Set up two-factor authentication.

A window of the same name opens, in which you need to go through the steps to enable and configure two-factor authentication.

At the first step, we indicate the phone number, confirm it by receiving a code in the form of SMS by phone.

The next step is to create a pin code. It is required to access the Yandex.Key application installed on your smartphone or tablet.

The PIN code can be from 4 to 16 digits. Enter them in the field and click Create.

A window will open with a QR code and offer to add your account to the Yandex.Key app.

Installing the Yandex.Key application

We launch it and at the bottom of the window that opens, a yellow button appears with a suggestion - Add an account to the app.

We press the button, a window will open on the smartphone screen in which you need to enter the previously invented pin code.

As soon as the pin code is entered, the camera will automatically turn on. Point the camera at the QR code in the monitor window and wait for authorization.

Another authorization method

Otherwise, to organize two-factor authentication after entering a pin code, it is possible to choose the option of obtaining a 30-second one-time password.

At the fourth step of setting up two-factor authentication, you need to link the Yandex.Key program with your Yandex account. To do this, enter the one-time password received on the smartphone.

If it turns out that it is impossible to enter it in time, then you need to wait for the next appearance of the numbers on the smartphone and enter it already.

After entering, press the button Turn on and that's it, the Yandex.Key program is activated and from that moment two-factor authentication should work.

Now on all devices - a computer, a smartphone - you need to log out and log in again to your account with an existing one-time password, or with a QR code, using the Yandex.Key mobile app.

In Yandex.Mail, we receive a letter with a notification that two-factor authentication has worked.

In the email you received, you can also get acquainted with the recommendations for setting up a new access and using two-factor authentication.

Yandex two-factor authentication for other services

For Yandex.Mail, Ya.Disk and other Yandex services, it is possible to create different passwords. This will significantly increase the level of security of personal data and the account as a whole. You can read about their safe storage.

To do this, go back to the section Passport - Access Control. Choose a program, in this case - Disk access.

For convenience, we call this compound, for example, My disk and press Create a password.

So, the password is created, and it will be displayed only once. Therefore, if it is not preserved, then it is better to delete it in the future and create it again.

Now you can connect to network drive Yandex. Through any file manager get access to Yandex.Disk using this password.

Thus, Yandex.Disk and the main Yandex account will be protected by separate passwords using the two-factor authentication function.

Disabling two-factor authentication

If in the future there is a desire to refuse the use of two-factor authentication, then for this it is enough to go to the section Access control and go through the disconnection process.

That is, we press the switch Off enter a one-time password issued by Yandex.Key, click Confirm.

Thus, two-factor authentication of Yandex account is disabled. It should be borne in mind that the passwords of Yandex.Disk and other services, if they are created, are also reset.

Yandex.Key service launched - two-factor authentication from Yandex

Protecting personal data is one of the most important issues on the Internet. Losing access to your account, whether it's mail or a social network, is akin to a disaster - how to come home and find that the key does not fit the lock. It is no coincidence that there are many tips on the Internet on how to protect your account from hacking, and perhaps the most popular of them is to use complex passwords and change them regularly. This, of course, is not bad, but constantly remembering new complex passwords can be quite tiring.

Especially for those who are worried about the security of their account, Yandex has launched a beta version of two-factor authentication. With it, the key to your account will be only in your hands. More precisely, in your smartphone.

When authorizing on Yandex - or on any other site - you enter your username and password. The system checks if the password matches the login and lets you in if everything is in order. But the password is only one verification factor. There are systems for which one factor is not enough. In addition to a password, they require, for example, special code, sent via SMS, or a USB key that must be inserted into the computer. These systems use two-factor or multi-factor authentication.

For our two-factor authentication scheme, we created Yandex.Key - a mobile application for iOS and Android. It is enough to consider the QR code as an application on home page Yandex, in the Passport or in the Mail authorization field - and you will find yourself in your account.

To use the Key, you need to enable two-factor authentication, install the application and link it to your account. Then you set a four-digit pin code in the application. This code will become one of the factors, part of the “secret”, on the basis of which the algorithm will create one-time passwords. The second factor is stored in the smartphone. When you read the QR code in the authorization form in the future, the application will send your login to the Yandex server and one-time password. The server will check them and instruct the page to let you in or not let you in.

When it is impossible to read the QR code, for example, the smartphone camera does not work or there is no access to the Internet, you can enter the one-time password manually. Entering a password in this case replaces reading a QR code - the only difference is that the password is not sent to the servers automatically, instead you enter it in the authorization form along with the login. The one-time password is valid for only 30 seconds. This is done so that it cannot be stolen from your computer (for example, using a program that remembers passwords entered into the browser).

No one except you will be able to use the Key to enter your account, because when generating passwords, the Key uses the pin code that you have created. Without the correct pin code, the application will create incorrect passwords that will not work for your account. If you have an Apple smartphone or tablet with Touch ID, you can use your fingerprint instead of a PIN.

Many users whose activities are related to making money on the Internet or storing online important information, are trying to protect their accounts from hacking and theft of confidential data.

Of course, a complex password that includes numbers and letters, as well as Special symbols, sufficiently reliable protection, but maximum effect provides two-factor authentication.

However, not every person knows about this option to protect their accounts, and this despite the fact that today there are more and more services (mailers, social networks etc.) offer to take advantage of this opportunity.

What is two-factor authentication?

So, what kind of protection are we talking about? In fact, you've come across two-step verification before. For example, when you are going to perform any transaction with money on the WebMoney website, then, in addition to your login and password, you will need to specify a confirmation code that will be sent to your mobile phone.

In other words, two-factor authentication is the second key to your account. If you activate this option, for example, in Evernote (there is such a possibility), then an attacker who managed to guess the password for this note service will face another problem - the requirement to specify a one-time code that comes to your phone number. It is worth noting that in the event of an attempt to hack your account, you will receive an SMS, and you can instantly change your password.

Agree that this is a very convenient option, using which you will be less worried about the loss of personal information.

Where is the best place to use?

Of course, some users may object, arguing that two-step verification is too much "excessive movements", and in general, it is intended for paranoids who always think that someone is watching them.

Perhaps they are right about something. For example, for social networks it is not necessary to use this method protection. Although even here it is debatable. As a rule, attackers try to hack into the accounts of administrators of popular "publics". And you, most likely, also would not like to notice one day that your account in one of the "social networks" was hacked and completely indecent photos were posted on the "Wall".

As for other services, for example, Yandex two-factor authentication will allow you to safely store your registration data from WebMoney and others) or letters containing secret information.

Google account protection

One of the most popular services today is Google. This is where you can register your e-mail mailbox, store documents on Google Drive, create a blog or YouTube channel for free, which can later bring you profit.

In order for users to be sure of the safety of documents stored on mail or disk, they are offered two-factor authentication by Google. You must be logged into your account to activate it.

Now, having opened, for example, a mailbox, pay attention to the avatar in the right upper corner. Click on it and go to "My Account". Here you need the "Security and Sign In" section, namely the "Google Account Sign In" link.

On the right you will see the option "Two-step verification", where you need to click the arrow to activate it. A window will open in which you are interested in the "Proceed to setup" button. Enter your password and follow further instructions.

Two-factor authentication "Yandex"

Yandex also offers its users quite a lot useful services. In addition to cloud storage of information on Yandex.Disk, you can get yourself an electronic wallet, where you will withdraw money earned on the Internet.

And, of course, Yandex did not stand aside and also offers its users to use two-factor authentication to protect documents stored in the mailbox.

To enable it, you will need to follow a few simple steps. Log in to your account and click LMB on the profile photo (upper right corner). Select "Passport" from the drop-down menu. A window will open in which you need to click on the "Access Control" link. Set the "slider" to the "ON" position. You will be redirected to a page where you need to click on the "Start setup" button. Now go through the 4 stages of activating two-factor protection.

Social network VKontakte"

As mentioned above, attackers usually try to gain access to the accounts of the “admins” of popular groups. But this is not always the case, because just the personal correspondence of some well-known person on the Internet may be of interest.

It is worth noting that for some users this method of protecting an account begins to annoy over time, as it requires constant input. secret code except for username and password. In such cases, you need to know how to disable two-factor authentication. However, first we will deal with the activation of this option.

In fact, turning on two-step verification is very simple. Select "My Settings" and then go to the "Security" tab. In the Login Confirmation section, click the Connect button. Now consistently follow all the requirements.

Disabling two-factor authentication

In order to deactivate two-step protection in Yandex, you will need to go back to your Passport by clicking on your profile picture. After that, open the "Access Control" section and set the slider to the "Off" position.

Conclusion

Now you know what two-loop authentication is and why you need it. By using this or that service, you can activate this additional protection or refuse such an opportunity.

Of course, in some cases it is highly recommended to enable two-step authentication. For example, when registering for WebMoney, you indicated the mail from Yandex. While surfing the Internet, you can become a victim of hackers who break into your mailbox and gain access to e-wallet. To prevent this from happening, it is better to install and link e-mail to the phone. Thus, you can quickly respond if someone tries to hack you.

It is no coincidence that there are many tips on the Internet on how to protect your account from hacking, and perhaps the most popular of them is to use complex passwords and change them regularly. This, of course, is not bad, but constantly remembering new complex passwords can be quite tiring. Especially for those who are worried about the security of their account, Yandex has launched a beta version of two-factor authentication. With it, the key to your account will be only in your hands. More precisely, in your smartphone. When authorizing on Yandex - or on any other site - you enter your username and password. The system checks if the password matches the login and lets you in if everything is in order. But the password is only one verification factor. There are systems for which one factor is not enough. In addition to the password, they require, for example, a special code sent via SMS, or a USB key that must be inserted into the computer. These systems use two-factor or multi-factor authentication. For our two-factor authentication scheme, we created Yandex.Key - a mobile application for iOS and Android. It is enough to consider the QR code on the Yandex home page, in the Passport or in the Mail authorization field as an application - and you will find yourself in your account. To use the Key, you need to enable two-factor authentication, install the app, and link it to your account. Then you set a four-digit pin code in the application. This code will become one of the factors, part of the “secret”, on the basis of which the algorithm will create one-time passwords. The second factor is stored in the smartphone. When you later read the QR code in the authorization form, the application will send your login and one-time password to the Yandex server. The server will check them and instruct the page to let you in or not let you in. When it is impossible to read the QR code, for example, the smartphone camera does not work or there is no access to the Internet, you can enter the one-time password manually. Entering a password in this case replaces reading a QR code - the only difference is that the password is not sent to the servers automatically, instead you enter it in the authorization form along with the login. The one-time password is valid for only 30 seconds. This is done so that it cannot be stolen from your computer (for example, using a program that remembers passwords entered into the browser). No one except you will be able to use the Key to enter your account, because when generating passwords, the Key uses the pin code that you have created. Without the correct pin code, the application will create incorrect passwords that will not work for your account. If you have an Apple smartphone or tablet with Touch ID, you can use your fingerprint instead of a PIN. The two-factor authentication mechanism is another tool that will help make the work of Yandex users on the Internet more secure. If you need additional protection for your account, it's time to close it on Yandex.Key.

Two-factor authentication provides an increased level of security compared to a traditional password. Even a complex and effective password can be vulnerable to viruses, keyloggers and phishing attacks.

You can enable two-factor authentication on the Yandex account management page. To set up Yandex.Key access, you need a mobile android device or iOS.

After enabling two-factor authentication:

• Instead of using standard password to access Yandex services and applications, you will need to enter a one-time password (for example, to enter your account or change your phone number). When using a QR code, you do not have to enter your login or passwords to log into your Yandex account.
• For third parties mobile applications, computer programs and email clients will need to use separate application passwords.
• The Yandex account recovery page will be changed.

To enable two-factor authentication, click on the “Set up two-factor authentication” link on the “Personal data” page in the “Access management” section and follow a few steps:

If your phone number is already linked to your account, verify or change it. If the phone number is not specified, you need to add it, otherwise, you will not be able to restore access to your account.

To link a new number or verify a phone number, request a code and then enter it in the appropriate field. Then click the “Confirm” button and proceed to the next step.

2. Create a PIN.

Think of a 4-digit PIN and enter it for two-factor authentication.

Important: You must not share your PIN with anyone else. The PIN cannot be changed. If you forget your PIN code, the Yandex.Key application will not be able to generate a one-time password, and you can only restore access to your account with the help of a technical support specialist.

After entering the PIN code, click the "Create" button.

The Yandex.Key application is required to generate one-time passwords for an account. You can send a link to install the app directly on the two-factor authentication setup screen, or you can download the app from the App Store or Google Play.

Note: Yandex.Key may require access to the device's camera to recognize barcodes (QR codes).

In the Yandex.Key app, click the "Add an account to the app" button. Then the camera of the device will start. Scan the barcode displayed in the browser.

If the QR code cannot be recognized, click the "Show The secret key” and click in the application “Add a key manually”. Instead of a QR code, the browser will show a sequence of characters that you need to enter into the application.

After recognizing the account, the device will ask you to enter the PIN code created in the previous step.

To verify that the setup was successful, enter the one-time password generated in the previous step. Two-factor authentication will only be enabled if you enter the correct password.

Just enter the PIN code created in step 2 into the Yandex.Key app. The application will generate a one-time password. Enter it next to the “Enable” button, and then click the button.

Note: You must enter the one-time password before it changes on the screen. Sometimes it's better to wait for a new password to be created and enter it.

If you entered the correct password, two-factor authentication will be enabled for your Yandex.Passport account.

How to disable two-factor authentication in Yandex

1. Go to the "Access Management" tab in your Yandex.Passport account.
2. Move the switch to the off position.
3. A page will open where you need to enter a one-time password from the Yandex.Key app.
4. If the password is entered correctly, the user will be prompted to set a new master password for the account.

Note: After disabling two-factor authentication, old app passwords will no longer work. You will need to create new application passwords to restore related services and applications, such as email clients.

The user can configure access third party applications to your Yandex account using application passwords. Please note that each individual application password grants access to a specific service. For example, a password created for mail client, will not allow access to cloud storage Yandex.Disk.

You can create application passwords on the Access control tab in your Yandex.Passport account control panel. Move the "Application passwords" switch to the "On" position. If two-factor authentication is enabled, app passwords will be forced to be enabled and cannot be disabled.

You will need to create a separate app password for each third party program, which asks for a Yandex password, including:

• mail clients ( Mozilla Thunderbird, Microsoft Outlook, The Bat! and etc.)
• WebDAV clients for Yandex.Disk
• CalDAV clients for Yandex.Calendar
• Jabber clients
• Applications for importing from other mail services

To create an app password:

1. Go to the "Access Management" tab in your Yandex.Passport account control panel.
2. Enable the App Passwords option if it is disabled (the toggle will not appear unless you have enabled two-factor authentication).
3. Click "Get App Password"
4. Select the Yandex service that you want to access in the application and the operating system.
5. Enter the name of the application for which you are creating a password and click "Add".
6. The password will be shown on the next tab. Click Finish.

Note: You can view the generated password only once. If you entered the password incorrectly and have already closed the window, then delete Current Password and create a new one.