Get a Quote     (408) 943-4100   TrueNAS Discord VendOp_Icon_15x15px Commercial Support
TrueNAS.com Software Systems Company Community Security iX Portal Download
TrueNAS CORE TrueNAS Enterprise TrueNAS SCALE Compare Editions TrueCommand Software Status FreeNAS
Compare Systems F-Series M-Series X-Series R-Series Mini Series
About iXsystems Our Clients Reviews Careers Awards iX Blog & News iX Website Contact Us
Community Forum Discord TrueNAS GitHub TrueNAS Merch Store
Application Analytics Backup and Archival Cloud Data Mobility File Sharing iX Storj Media Creation Video Surveillance Virtualization
Industry Automotive Education Gaming Government Healthcare MSP Manufacturing Research & AI Media & Entertainment
Download TrueNAS CORE Download TrueNAS SCALE Get TrueNAS Enterprise Compare TrueNAS Editions Where to Buy
  1. Documentation Hub
  2. /
  3. TrueNAS CORE
  4. /
  5. CORE Tutorials
  6. /
  7. System Configuration
  8. /
  9. Using Two-Factor Authentication
Edit page
TrueNAS CORETrueNAS CORE Nightly Development Documentation
This content follows experimental early release software. Use the Product and Version selectors above to view content specific to a stable software release.

Using Two-Factor Authentication

  2 minute read.

Last Modified 2023-11-30 10:15 EST

We recommend two-factor authentication (2FA) for increased security. TrueNAS offers 2FA to ensure that a compromised administrator (root) password alone cannot grant access to the administrator interface. To utilize 2FA, you need a mobile device with Google Authenticator installed. Other authenticator applications can be used, but you will need to confirm the settings and QR codes generated in TrueNAS are compatible with your particular app before permanently activating 2FA.

What is 2FA, and why would I want to enable it?

Two-factor authentication (2FA) is an extra layer of security that prevents someone from logging in, even if they have your password. This extra security measure requires you to verify your identity using a randomized 6-digit code that regenerates every 30 seconds (unless modified).

Setting Up Two-Factor Authentication

Set up a second 2FA device as a backup before proceeding.

Go to System > 2FA and click ENABLE TWO-FACTOR AUTHENTICATION. Then, click CONFIRM.

System2FAOptionsNoSSH

Click SHOW QR, then scan it using Google Authenticator on the mobile device.

System2FAQRCode

Using 2FA to Log In to TrueNAS

Enabling 2FA changes the login process for both the TrueNAS web interface and SSH logins:

Web UI Login

Login2FA

The login screen has another field for the randomized authenticator code. If this field isn’t immediately visible, refresh the browser.

Enter the code from the mobile device (complete without the space) in the login window with the root username and password.

SSH Login

SSHConnect2FA

Set Enable Two-Factor Auth for SSH in System > 2FA, then go to Services > SSH and click .

Set Log in as Root with Password and click SAVE. Toggle the SSH service and wait for the status to show that it is RUNNING.

Open a Command Prompt or Terminal and SSH into TrueNAS using the system hostname or IP address, root account username and password, and the 2FA code from the mobile device.

Related Content

CORE UI Reference
Solutions

Have more questions?

For further discussion or assistance, see these resources:

Found content that needs an update?  You can suggest content changes directly! To request changes to this content, click the Feedback button located on the middle-right side of the page (might require disabling ad blocking plugins).