Skip to main content

Two-Factor Authentication (2FA)

This article explains how to set up and manage Two-Factor Authentication (2FA) in Panacea version 4.9.7 and later

Dmitri Kanavalchuk avatar
Written by Dmitri Kanavalchuk
Updated this week

Overview

Two-Factor Authentication adds an extra layer of security to your Panacea account by requiring both your password and a verification code from your mobile device when logging in. This significantly reduces the risk of unauthorized access, even if your password is compromised.

Panacea supports Time-Based One-Time Password (TOTP) authentication through popular authenticator apps including:

  • Google Authenticator (iOS, Android)

  • Microsoft Authenticator

  • Authy

  • Any other TOTP-compatible app

Enabling 2FA

  1. Navigate to Account ManagementSecurity tab → Click Edit button

  2. Click Enable Two-Factor Authentication

  3. Scan the QR code with your authenticator app

  4. Enter the 6-digit verification code from your app

  5. Click Save to Save the settings and Enable Two-Factor Authentication

Important: During setup, you'll see your own unique set of backup codes. Store these in a secure place as they're your only recovery method if you lose access to your authenticator app. Backup codes are single-use only. To regain access to your 6-digit verification codes, you'll need to re-enable Two-Factor Authentication and generate a new set of backup codes during setup. You can re-enable 2FA by disabling 2FA in Panacea and then turning it on again (refer below).

Enable Two-Factor Authentication form

Two-Factor Authentication is enabled on account

Disabling 2FA

  1. Navigate to Account ManagementSecurity tab → Click Edit button

  2. Uncheck Two-Factor Authentication checkbox

  3. Select the Verification method to use (App OTP codes or Recovery code)

  4. Enter the 6-digit verification code from your app or recovery code

  5. Click Save to Save the settings and Disable Two-Factor Authentication

Using 2FA

After enabling 2FA:

  1. Enter your username and password as usual to login into your account

  2. When prompted, open your authenticator app

  3. Enter the current 6-digit code

  4. Click Login to access your account

Codes refresh every 30 seconds for added security.

2FA OTP code enter form

2FA OTP code from Google Authenticator app

Account Recovery Options

If you can no longer access your 2FA authenticator app, follow these steps to regain access and reset your verification method:

  1. Log in with a backup code

    • On the 2FA login page, select "Login with recovery code"

    • Enter one of your unused backup codes

    • You’ll be granted access and redirected to Panacea’s dashboard

  2. Disable 2FA temporarily

    • Navigate to: Account Management → Security tab

    • Uncheck the "Two-Factor Authentication" checkbox

    • Select "Recovery code" as your verification method

    • Confirm using another backup code when prompted

  3. Set up 2FA again

    • Re-enable 2FA in the Security tab

    • Scan the new QR code with your authenticator app (or the replacement device)

    • Securely store the new set of backup codes

Security Tip: Treat backup codes like passwords - store them securely and never share them.

Frequently Asked Questions

Q: What if I lose both my phone and backup codes?
A: Contact our support team with account verification details to begin recovery.

Q: Can I use SMS instead of an authenticator app?
A: Currently we only support TOTP apps as they're more secure than SMS.

Q: Is 2FA mandatory for all users?
A: Currently optional but highly recommended for all account types.

Did this answer your question?