Skip to main content

VRM Portal manual

9. Two-factor verification

In this section:

9.1. Introduction

Protect your account against unauthorized access with two-factor verification. Two-factor verification adds an extra layer of protection to your account by requiring you to enter both your password and a security code when logging into your VRM installation. The code can be sent to a phone number via SMS or obtained through an authenticator app.

This chapter describes how two-factor authentication can be switched on or off for your VRM account. The activation sequence for each two-factor authentication method is detailed below in its own section.

If you want to deactivate two-factor authentication, please refer to the last section.

9.2. Accessing two-factor verification settings

By default, a password (the one you registered) is required to log in.

Before making changes to the two-factor verification settings on your account, you will be required to authorise those changes. This section explains where to find the two-factor verification menu and how to use it.

  1. Log into your account at https://vrm.victronenergy.com/user/login

  2. Once logged in, you will be redirected to your VRM homepage. On this page click 'Back' on the left as shown in the image below, where 'Back' is marked with a red box.

    VRM_Two_Factor_back.png

  3. Click on Preferences in the menu on the left.

  4. Next click on Two-factor verification on the left.

  5. To be able to make changes, click the 'Make changes' button that appears and verify with your password. This is only necessary once per session.

  6. Choose between Password only, SMS verification or Authenticator app.

  7. To authorise making changes to the two-factor verification settings you are required to perform the already configured two-factor verification process.

    The authorisation form will indicate to you what information to provide.

    • In the case of Password only setting you are only required to enter your password.

    • If the active two-factor verification mode is SMS, then you will receive a security code on the phone number registered on your account. Otherwise, you will be asked to enter the country code and phone number in case you want to authorise your account via SMS in the future. You will then receive an SMS with a verification number.

    • When using an authenticator app, use the app to generate the required security code.

  8. After filling in the required information, click the green button labelled ‘Verify’ to continue.

  9. If the verification code is correct, you will be redirected to the two-factor verification settings page. The blue 'Make changes' button should have disappeared and you can now make changes to your settings.

9.3. SMS verification

With SMS verification mode, each login attempt will require you to enter a unique SMS code to verify your identity. In addition, the two-factor verification settings page will also be protected by the same verification sequence.

9.3.1. Activation

This section details how to activate SMS verification as two-factor verification mode.

  1. Navigate to the two-factor verification settings menu and authorise making changes (see Accessing two-factor verification settings section). To start setting up SMS verification, click the SMS verification labelled option on the menu on the left.

  2. With the left dropdown select the prefix of your phone number, most likely this is the same as the country you reside in. Fill the remainder of your phone number into the Phonenumber input box.

  3. Proceed by clicking on the green 'Next' button. This will cause a test SMS to be sent to the phone number you entered. Make sure you have access to the phone with the chosen phone number and that it is able to receive the test SMS.

  4. It may take a moment for the test SMS to be received, the SMS should contain the verification code to verify. Enter the code into the input box fully and select the green 'Verify' button to confirm the code.

    • You can change the phone number by clicking on the '(Change)' link next to the phone number display. This will bring you back to the previous step, allowing you to send a new test SMS.

    • In the event of an error or failure to receive the SMS, double check the phone number on the screen.

  5. When the test code is verified, you will see confirmation to indicate the completion of the SMS two-factor verification setup. Immediately after this, any future login attempt will require you to enter an SMS code as part of the login sequence.

9.3.2. Change phone number

Once the SMS verification mode is activated, you can change the phone number on which to receive the SMS verification using the button labelled “Change” next to the phone number display. The procedure to change the phone number follows the same steps as in the activation of the SMS verification mode. Please refer to the Accessing two-factor verification settings section for a detailed explanation on each step.

9.4. Authenticator app

Protect your account through an authenticator app. This is a mobile phone app that will generate security codes used during logins.

9.4.1. Activation

This section details the steps taken to link an authenticator app to your VRM account. The guide assumes that an authenticator app has been installed (by you) on the device you wish to use for two-factor verification.

  1. Navigate to the two-factor verification settings menu and authorise making changes (see Accessing two-factor verification settings section). To start setting up mobile authenticator verification, click the Authenticator app labelled option on the menu.

  2. Open the authenticator app and select to add an account (this varies per app, in some cases it may also be labelled 'Scan code'). Authenticator apps are linked by scanning a QR code, this must be done using the QR code on the setup page.

    Should it be the case that you are visiting VRM on the phone that has the authenticator app, then you can tap the 'Use this phone' link to activate the authenticator app directly. Note: This requires the authenticator app to be installed on your phone.

  3. Once the app has scanned the QR code, finish creating the profile in the authenticator. Use the new profile to generate the first security code (6 digits) and enter it into the 'Two-factor verification code' labelled input box. If the security code is not immediately visible, the app may require you to tap the profile or a similar interaction to generate the code. After entering the code, click the 'Verify' button next to the input box to complete the link. The codes generated by the authenticator app are only valid for a short period of time (about 30 seconds), so if the verification fails it may be that the code already expired.

  4. When the verification of the generated code passes, the screen shown below is shown. From here you can immediately add more devices or go back to settings. You can also add more devices at a later point in time.

9.4.2. Adding another device

Once activated, you can link more devices to use for two-factor verification. You can use any single-linked device for the two-factor verification during login.

To add more devices, use the 'Add device' button on the two-factor settings page. The process thereafter is the same as for the initial activation sequence (see activation section for steps).

9.4.3. Removing device

It may be the case that you want to remove a linked device such that it can no longer be used for two-factor verification. To do this you will have to use the 'Revoke devices' button on the settings page, this will revoke *all* devices to your account. The revoke process is carried out by successfully making a new link to a device, this invalidates all previously linked devices. You can reuse an already linked device during the revoke process. The process thereafter is the same as for the initial activation sequence (see activation section for steps).

9.5. Disabling two-factor verification

You can completely disable two-factor verification on your account by clicking on the 'Password only' option on the two-factor verification settings page.

Disabling two-factor verification removes the two-factor verification data for the other methods you setup. Meaning that switching back to a different verification mode afterwards will require you to go through the entire setup process again for that verification mode.

  1. Navigate to the two-factor verification settings menu and authorise making changes (see Accessing two-factor verification settings section). To disable two-factor verification, click the 'Password only' labelled option on the menu. This is the red outlined option in the image below. If this option has a blue checkmark, then two-factor verification is already disabled.

  2. Mark the checkbox to indicate you want to proceed with switching back to password only protection on your account. Then you can click the red confirmation button, immediately afterwards any future login attempts will only require you to enter a password.

9.5.1. Resetting two-factor verification

When trying to log-in, after entering the password, below the 2FA box there is an option to "Reset 2 Factor Authentication"

You can reset 2FA by following these steps:

  • Fill in email & password

  • Click the "Reset two-factor authentication" text link

  • Fill in your email (again)

  • An email is sent to that mail account with a hyperlink

  • Clicking the link resets 2FA

CleanShot_2023-10-11_at_14_56_49.jpg