Confirmed users
502
edits
IAM/Frequently asked questions: Difference between revisions
IAM/Frequently asked questions (view source)
Revision as of 20:18, 1 November 2017
, 1 November 2017Automated sync from https://github.com/mozilla/wikimo_content
(Added a validity banner.) |
Gdestuynder (talk | contribs) (Automated sync from https://github.com/mozilla/wikimo_content) |
||
| Line 7: | Line 7: | ||
[https://github.com/mozilla-iam/mozilla-iam Mozilla IAM] stands for Mozilla's Identity and Access Management. It's the | [https://github.com/mozilla-iam/mozilla-iam Mozilla IAM] stands for Mozilla's Identity and Access Management. It's the | ||
system that Mozilla | system that Mozilla manages logins to various web properties and systems. | ||
Usually, you'd use Mozilla IAM as Mozilla Staff, or as a contributor with access to the tools and resources Mozilla uses day to day. | Usually, you'd use Mozilla IAM as Mozilla Staff, or as a contributor with access to the tools and resources Mozilla uses day to day. | ||
| Line 30: | Line 30: | ||
Sometimes all you want to do is post a comment on a public forum. For that, we often need to provide a valid identity, but we also want to make it as easy as possible for you to contribute. | Sometimes all you want to do is post a comment on a public forum. For that, we often need to provide a valid identity, but we also want to make it as easy as possible for you to contribute. | ||
Email login ("passwordless") is our current solution for this use case. Some applications we provide may not provide this login method, for example when the application | Email login ("passwordless") is our current solution for this use case. Some applications we provide may not provide this login method, for example when the application require more secure methods. | ||
==== '''Q''': ''I would like access to specific groups, such as the NDA group, but it requires me to use a different login method, why?'' ==== | ==== '''Q''': ''I would like access to specific groups, such as the NDA group, but it requires me to use a different login method, why?'' ==== | ||
| Line 67: | Line 67: | ||
*For Android and iOS: Duo Mobile | *For Android and iOS: Duo Mobile | ||
*For Windows Phone: Authenticator | *For Windows Phone: Authenticator | ||
2. In the upper-right corner of any page, click your profile photo, then click Settings. | 2. In the upper-right corner of any page, click your profile photo, then click Settings. | ||
[[File:Github-settings.png|450px]] | [[File:Github-settings.png|450px]] | ||
3. In the user settings sidebar, click Security. | 3. In the user settings sidebar, click Security. | ||
[[File:Github_-_security.png|150px]] | [[File:Github_-_security.png|150px]] | ||
4. Under Two-factor authentication, click Set up two-factor authentication. | 4. Under Two-factor authentication, click Set up two-factor authentication. | ||
[[File:Github_-_set_up_2fa.png|400px]] | [[File:Github_-_set_up_2fa.png|400px]] | ||
5. On the Two-factor authentication page, click Set up using an app. | 5. On the Two-factor authentication page, click Set up using an app. | ||
[[File:Github_-_set_up_using_an_app.png|400px]] | [[File:Github_-_set_up_using_an_app.png|400px]] | ||
6. To enable two-factor authentication you must save your two-factor recovery codes in a safe place, such as a password manager, by clicking Download, Print, or Copy. Your recovery codes will help get you back into your account if you've lost access. After saving your codes, click Next. | 6. To enable two-factor authentication you must save your two-factor recovery codes in a safe place, such as a password manager, by clicking Download, Print, or Copy. Your recovery codes will help get you back into your account if you've lost access. After saving your codes, click Next. | ||
[[File:Github_-_recovery.png|450px]] | [[File:Github_-_recovery.png|450px]] | ||
7. Scan the QR code with your mobile device's app. After scanning, the app will display a six-digit code that you can enter on GitHub. | 7. Scan the QR code with your mobile device's app. After scanning, the app will display a six-digit code that you can enter on GitHub. | ||
[[File:Github_-_scan_barcode.png|400px]] | [[File:Github_-_scan_barcode.png|400px]] | ||
8. The TOTP mobile application will save your GitHub account and generate a new authentication code every few seconds. On GitHub, on the 2FA page, type the code and click Next. | 8. The TOTP mobile application will save your GitHub account and generate a new authentication code every few seconds. On GitHub, on the 2FA page, type the code and click Next. | ||
[[File:Github_-_enter_passcode.png|400px]] | [[File:Github_-_enter_passcode.png|400px]] | ||
9. Verify that a success message is shown | 9. Verify that a success message is shown | ||
[[File:Github_-_2fa_success_message.png|400px]] | [[File:Github_-_2fa_success_message.png|400px]] | ||
10. After 2FA has been enabled and you've saved your recovery codes, we recommend you sign out and back in to your account. In case of problems, such as a forgotten password or typo in your email address, you can use recovery codes to access your account and correct the problem. | 10. After 2FA has been enabled and you've saved your recovery codes, we recommend you sign out and back in to your account. In case of problems, such as a forgotten password or typo in your email address, you can use recovery codes to access your account and correct the problem. | ||
| Line 89: | Line 89: | ||
1. In the following steps we assume you have 2FA set for your github account. If not, see the steps from [https://wiki.mozilla.org/IAM/Frequently_asked_questions#Q:_How_can_I_set_up_two-factor_authentication_.282FA.29_for_my_github_account.3F here] <br> | 1. In the following steps we assume you have 2FA set for your github account. If not, see the steps from [https://wiki.mozilla.org/IAM/Frequently_asked_questions#Q:_How_can_I_set_up_two-factor_authentication_.282FA.29_for_my_github_account.3F here] <br> | ||
2. Login to mozillians with your email.<br> | 2. Login to mozillians with your email.<br> | ||
3. Navigate to profile settings page. | 3. Navigate to profile settings page. | ||
[[File:Mozillians_-_go_to_settings.png|400px]] | [[File:Mozillians_-_go_to_settings.png|400px]] | ||
4. Scroll down to “Profile Identities” section and click “Add Identity” button. | 4. Scroll down to “Profile Identities” section and click “Add Identity” button. | ||
[[File:Mozillians_-_add_identity.png|450px]] | [[File:Mozillians_-_add_identity.png|450px]] | ||
5. Select “Log in with Github” option in next page. | 5. Select “Log in with Github” option in next page. | ||
[[File:Mozillians_-_verify_github_account.png|280px]] | [[File:Mozillians_-_verify_github_account.png|280px]] | ||
6. Click Authorize mozilla. If you’re logged in to github in the same browser, you can skip the next 2 steps. | 6. Click Authorize mozilla. If you’re logged in to github in the same browser, you can skip the next 2 steps. | ||
| Line 112: | Line 112: | ||
1. In the following steps we assume you have 2FA set for your github account. If not, see the steps from [https://wiki.mozilla.org/IAM/Frequently_asked_questions#Q:_How_can_I_set_up_two-factor_authentication_.282FA.29_for_my_github_account.3F here].<br> | 1. In the following steps we assume you have 2FA set for your github account. If not, see the steps from [https://wiki.mozilla.org/IAM/Frequently_asked_questions#Q:_How_can_I_set_up_two-factor_authentication_.282FA.29_for_my_github_account.3F here].<br> | ||
2. Navigate to mozillians page and click Log In/Sign Up button. <br> | 2. Navigate to mozillians page and click Log In/Sign Up button. <br> | ||
3. Select “Log in with Github” method from mozillians login page. <br> | 3. Select “Log in with Github” method from mozillians login page. <br> | ||
[[File:Mozillians_-_login_ways.png|350px]] | [[File:Mozillians_-_login_ways.png|350px]] | ||
4. Enter Github credentials. | 4. Enter Github credentials. | ||
[[File:Mozillians_-_login_with_github_to_upgrade_account.png|350px]] | [[File:Mozillians_-_login_with_github_to_upgrade_account.png|350px]] | ||
5. Enter 2fa code from your application. | 5. Enter 2fa code from your application. | ||
[[File:Mozillians_-_enter_2fa_code.png|300px]] | [[File:Mozillians_-_enter_2fa_code.png|300px]] | ||
6. Navigate to Settings -> Profile Identities section, and verify that Github is set as your login identity. That means this is the only account you can use from now on to login to mozillians. | 6. Navigate to Settings -> Profile Identities section, and verify that Github is set as your login identity. That means this is the only account you can use from now on to login to mozillians. | ||
[[File:Mozillians_-_upgrade_to_github.png|350px]] | [[File:Mozillians_-_upgrade_to_github.png|350px]] | ||
7. Trying to login with email to mozillians will return an error page, asking to login with github. | 7. Trying to login with email to mozillians will return an error page, asking to login with github. | ||
[[File:Mozillians_-_forbidden_page_-_github.png|350px]] | [[File:Mozillians_-_forbidden_page_-_github.png|350px]] | ||
==== '''Q''': ''How can I upgrade my mozillians account from passwordless to LDAP?'' ==== | ==== '''Q''': ''How can I upgrade my mozillians account from passwordless to LDAP?'' ==== | ||
1. Login to mozillians with your email.<br> | 1. Login to mozillians with your email.<br> | ||
2. Navigate to profile settings page. | 2. Navigate to profile settings page. | ||
[[File:Mozillians_-_go_to_settings.png|350px]] | [[File:Mozillians_-_go_to_settings.png|350px]] | ||
3. Scroll down to “Profile Identities” section and click “Add Identity” button. | 3. Scroll down to “Profile Identities” section and click “Add Identity” button. | ||
[[File:Mozillians_-_add_identity_-_ldap.png|350px]] | [[File:Mozillians_-_add_identity_-_ldap.png|350px]] | ||
4. Select "Log in with LDAP" in the next page. | 4. Select "Log in with LDAP" in the next page. | ||