Two-Factor Authentication Using TOTP

Two-factor authentication refers to the security practice of requiring two different types of verification to prove your identity. When you activate two-factor authentication on your Gandi account you will provide both your regular password and additional code generated either from an app, usually on your mobile device (TOTP), or from a USB device you plug into your computer (security key).

This page focuses on TOTP. You can read more about security keys here.

How TOTP Works

TOTP stands for “time-based one-time password algorithm.” To use TOTP you will link the app on your phone or computer to your Gandi account. After the accounts are linked, you provide code from this app into every time you log into your Gandi account. The codes are generated based on the key we provided when you linked your app with Gandi and the precise time you are logging in. Each code is valid for 30 seconds, after which a new code will automatically be generated.

Setting up TOTP requires a TOTP application or device. At the bottom of this page you can find a list of free apps and programs you can use.

When you set up TOTP on your Gandi account we will provide you with a set of recovery codes. These codes can be used if you somehow lose access to your app (for example, if you lose or replace your phone). It is important to save your recovery codes in a safe place such as in a password manager app. You can use these codes to log in to your Gandi account and either disable TOTP or connect your account to a new TOTP app.

Activate TOTP

To activiate TOTP on your account, follow these steps:

  1. Download a TOTP app to your phone or your computer.
  2. Log in to your Gandi account online.
  3. In the top right corner of the page click the arrow next to your username.
  4. Click “User Settings.”
  5. Click “Change password & configure access restrictions.”
  6. Click “Enable TOTP.”
  7. Carefully read the instructions, then click “Start when you are ready.
  8. Save your recovery codes. You can do this by printing the page, donwloading the codes, or copying them to paste somewhere else.
  9. Click “Continue.”
  10. Link your TOTP app to your Gandi account by scanning the barcode or by typing in the code in the black box.
  11. Click “Continue.”
  12. Verify that your account is properly linked by typing in the current code in your authentication app as well as your account password.
  13. Click “Continue.”

Tip

The “T” in “TOTP” stands for time based. Because the time is part of the calculation that occurs, it is important that the time on your account and the time on your device be in sync. A difference in time or time zone can cause an error.

Disable TOTP

To disable TOTP on your account, follow these steps:

  1. Download a TOTP app to your phone or your computer.
  2. Log in to your Gandi account online.
  3. In the top right corner of the page click the arrow next to your username.
  4. Click “User Settings.”
  5. Click “Change password & configure access restrictions.”
  6. Click “Disable TOTP.”
  7. Type in your account password and confirm.

Blocked Account

If you have lost access to your authentication app (for example, you lost your mobile device) and have also lost access to the recovery codes we provided during the TOTP setup process, please contact our support team. You will then need to send them a copy of this form to regain access to your account.