Skip to main content

Amazon and Two-Factor Auth

In this post, I'll go over setting up Two-Factor Authentication for an Amazon account. If you want more information about Two-Factor Authentication and an app recommendation, see my post on the topic HERE. If you're ready to get started, then let's go!

As I've said before, this is not meant to be an in-depth guide, but more of a how-to for those that wouldn't normally think of turning on additional security settings. With that, let's get started:

1) Go to Your Account in the upper right, and fine Account Settings toward the bottom of the page:



2) Next you should see an option for Advanced Security Settings, select the Edit button:



3) On the next page you should have the open to turn on Two-Step Verification. Select the Get Started button to turn this on.



4.1) On the next page you'll have the option to either use SMS messaging or an authenticatior app. If you went through my post on 2-factor for all and installed the DUO Mobile app on your device, skip down to the next step. If not, then enter your mobile number and select the "Send code" button. Within minutes, you should get a code in your SMS app. Enter that code and select the "verify code and continue" button.



4.2) If you have the DUO Mobile app on your device, select the Authenticator App radial button and go into the app on your device. Select the key with a plus (+) icon in the upper right corner and aim your camera at the QR code that now appears on your screen. Select the Key icon next to your Amazon account and enter the code provided.



5) Next, you will be asked to enter a backup phone number. In my case, I used a separate phone and  number that I have available.



6) After entering that last code, you should be presented with a wonderful Success message.



And that's it! Next time you log into Amazon on a non-trusted device, you should be asked for a code either from the authenticator app or from your SMS.

Comments

Popular posts from this blog

Using Python for GPG/PGP File Encryption - Part 1

So, this will be the start of a series that will build a python script for GPG/PGP file encryption. In this post, we'll look at installing gnupg for python and using python to setup the keystore, create a private key, exporting the associated public key, and importing a public key. Now everything done here can be done with simple gnupg commands, but learning how to do this with python will help in understanding the script we'll be building to complete file encryption. I will be covering non-python gnupg commands in a future post. Additionally, the folks at the python-gnupg site over at pythonhosted.org have done a really great job at documenting everything (link to their site at the bottom). The stuff I'll be going over will be more of a start-to-finish for anyone that may get lost in the muck of doing stuff with python. Full Disclosure #1: Any key identifier throughout the series of posts is FICTITIOUS and DOES NOT represent any real key, either associated with myself or...

Windows Server 2008: Log on as batch job

From time to time, I have to set up some scheduled tasks that required a dedicated account to run. And when doing so, I'll usually forget that the dedicated account usually isn't given any more permissions than what it needs to complete the task at hand. So, after setting up the task, Windows will usually yell at me and say "The account needs batch job rights". So here's how to grant batch job permissions on your server. Go to your start menu, and start searching for Local Security Policy In the left pane of the MMC that opens up, expand Local Policies, and highlight User Rights Assignment. Now, in the left right pane, locate "Log on as a batch job" and double click it. In the properties window that opens up, add the user or group that needs this permission. I find that if you have multiple service accounts running different tasks on the same server, it's easier to just add a group verses the individual a...

Using Python for GPG/PGP File Encryption - Part 2

Previously we looked at creating keys, importing public and private keys and the overall setup of gnupg with python. This time around, we're going to take a look at file encryption. Overall the file encryption process is fairly general/easy. But it lacks in the area of scaleablilty, ie to start, you'll only be encrypting one file at a time, which can be done outside of Python with ease. The idea of going over everything in Python, is that you can setup a script to encrypt multiple files in a folder (look for that in Part 3). Assumptions; you have python, and python-gnupg installed, and a public key from someone you want to encrypt and send files to imported to your keystore home (see Part 1 for more information here. Let's get started with Python file encryption. Start off by getting into your python shell, and enter the following: >>> import os >>> import gnupg >>> gpg_home = "/path/to/keyfile/.gnupg" >>> gpg = gnupg....