Skip to content

Set Up Two-Factor Authentication

Two-factor authentication (2FA) adds a second verification step to the local Coralogix login. With 2FA enabled, you log in with your password and a time-based one-time code from an authenticator app. This extra step helps protect your account from unauthorized access.

This guide outlines the steps to set up, use, and reset 2FA on your account.

How 2FA works

2FA in Coralogix is based on the security principle of something you know and something you have: your Coralogix password plus a time-based one-time code from an authenticator app on a trusted device.

Coralogix supports standard TOTP authenticator apps, including Google Authenticator, Microsoft Authenticator, and 1Password. Each user manages 2FA for their own account, including setting it up, generating and downloading backup codes, using codes or backup codes during login, and disabling or reconfiguring 2FA when needed.

2FA applies only to local login with email and password. If your organization uses SSO, your identity provider (IdP) continues to manage MFA for those login flows.

What you need

Before you start, make sure that:

  • You have enabled login mode: local in Coralogix.
  • You have access to a smartphone or another trusted device where you can install an authenticator app.
  • You are signed in to Coralogix with the account you want to protect.

Set up 2FA for your own account

Each user sets up 2FA from inside Coralogix.

The setup flow is similar whether you start it from your profile or during sign-in.

Step 1: Open the 2FA setup flow

To set up 2FA from inside Coralogix:

  1. Sign in with your email and password.
  2. Go to Settings, then MFA.
  3. Select Set up 2FA.

Step 2: Install an authenticator app

Coralogix supports standard TOTP authenticator apps, including Google Authenticator, Microsoft Authenticator, and 1Password. Each user manages 2FA for their own account, including setting it up, generating and downloading backup codes, using codes or backup codes during login, and disabling or reconfiguring 2FA when needed.

If you do not already have a TOTP-compatible authenticator, install one on your phone or trusted device.

Once you have installed an authenticator app:

  1. On the setup screen, review the short description of 2FA and the authenticator requirement.
  2. When the app is ready, return to the Coralogix 2FA setup screen.

Step 3: Scan the QR code and verify your first code

  1. On the setup screen, Coralogix shows a QR code and a secret key.
  2. In your authenticator app, add a new account.

  3. Use your authenticator app to scan the QR code shown in Coralogix. If you cannot scan the QR code, enter the secret key manually in the authenticator app.

  4. The authenticator app starts generating one-time numeric codes for your Coralogix account.

  5. On the Coralogix setup screen, enter the current code from the authenticator app in the verification field.
  6. Select Verify.

If the code is valid, Coralogix confirms that 2FA is now enabled for your account.

Generate and save backup codes

Backup codes allow you to access Coralogix if you are unable to use your authenticator app (for example, your phone is lost, stolen, or temporarily unavailable).

Note:

  • Backup codes are generated in a set.
  • Each code is valid for one sign-in and can be used only once.
  • After you generate and download backup codes, you cannot view them again in the UI.

Step 1: Generate backup codes

Immediately after you verify your first authenticator code, Coralogix creates a list of one-time backup codes for your account.

Step 2: Download and store backup codes

  1. Select Download to save the backup codes as a text file. Alternatively or in addition, select Copy.
  2. Save the file or copied backup codes in a secure location that only you can access, such as an encrypted password manager or a secure enterprise storage system.
  3. Confirm that you have downloaded and stored the codes.
  4. Select Hide codes.

Once complete, Coralogix removes them from the UI. If you later lose access to this file or use all the codes, you can generate a new set from the 2FA settings for your account. The new set replaces any remaining unused codes from the previous set.

Sign in with 2FA

After you set up 2FA, the local sign-in flow adds a second step.

  1. Go to the Coralogix sign-in page.
  2. Enter your email and password, and then select Sign in.
  3. If 2FA is enabled on your account, Coralogix shows the Two-factor verification screen.
  4. Open your authenticator app and find the Coralogix account entry.

  5. Enter the current 2FA code in the verification field.

  6. Select Verify to complete the sign-in.

If the code is correct and has not expired, Coralogix signs you in.

If you cannot access your authenticator app, use a backup code instead.

Use a backup code during sign-in

Use a backup code when you cannot get a code from your authenticator app, for example:

  • Your phone is lost or unavailable.
  • The authenticator app is uninstalled or corrupted.
  • You are temporarily working from a device without your authenticator.

To sign in with a backup code:

  1. On the Two-factor verification screen, select Use backup code.
  2. Open the secure location where you stored your backup codes.
  3. Enter one unused backup code in the field.
  4. Select Verify.

If the code is valid, Coralogix signs you in and marks that backup code as used. You cannot use the same code again.

If the backup code is invalid or already used, Coralogix shows an error message and prompts you to try a different code or use your authenticator app.

Account lockouts and temporary blocks

To protect your account, Coralogix can temporarily lock 2FA verification after multiple failed attempts.

  • If you enter an incorrect authenticator code or backup code several times in a row, your account may be temporarily locked from further 2FA attempts.
  • During a temporary lock, you cannot complete 2FA and sign in with local credentials.
  • After the lock period ends, you can try again with a valid code.

If you remain locked out or cannot restore access to your authenticator or backup codes, contact your Coralogix administrator.

Disable or reset 2FA for your account

To disable 2FA:

  1. Sign in to Coralogix.
    • If you still have 2FA access, complete the 2FA step as usual.
    • If you do not have 2FA access, work with Customer Support to restore access first.
  2. Go to your profile or security settings.
  3. Open the Two-factor authentication section.
  4. Select Disable two-factor authentication.
  5. Review the warning that explains that turning off 2FA resets your current setup and invalidates your existing backup codes.
  6. Confirm to disable 2FA.

To re-enable 2FA, repeat the setup flow described in Set up 2FA for your own account. Coralogix generates a new QR code and secret key, and you must create a new set of backup codes.

Monitor 2FA status for your team

Admins can monitor 2FA adoption from the Team Members page.

The Team Members page includes: - A login method column that shows whether a user can sign in with SSO, local credentials, or both. - A 2FA status column that indicates whether the user: - Has completed 2FA setup - Is still pending setup even though enforcement is on

Use this information to: - Identify users who have not yet enrolled in 2FA after enforcement. - Reach out to users who might be blocked or confused by the setup flow. - Confirm that critical accounts, such as organizational administrators, are protected by 2FA.

Previous OAuth 2.1
Next SSO