How do I configure Two-factor authentication for the Admin login with TOTP?

This article shows how to configure Two-factor authentication for Admin login and have an additional layer of security with Time-Based One-Time-Password (TOTP) authentication.

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

• Navigate to Device | Settings | Administration | Firewall Administrator.
• Under Administrator Name and Password | Click the drop-down option of " One-time passwords Methos" select TOTP.
• Accept the settings and save it.

• Download the Google Authenticator App or any other App that supports TOTP, such as Microsoft Authenticator, Duo or Free-OTP

•  Login to the SonicWall Appliance with the Admin credentials.

• A QR Code will be displayed on the Screen and an Emergency Scratch code

 NOTE: Please store the Emergency Scratch Code as it is the only way to login over HTTPS if the mobile device is lost or got reset. Otherwise, you need to login to CLI and disable the TOTP.

• Open the Google Authenticator App on the Mobile phone and Scan the barcode , Click on Begin

• Add an Account using scan a barcode 

• Once the barcode is scanned, the application will provide a 6-digit OTP

• Enter the OTP under the 2FA Code option on the Appliance Portal

• Click here to Continue

• Click on the Manage Tab to Log in

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

• Navigate to Manage|System Setup | Appliance | Base settings.
• Under Administrator Name and Password | Click the drop-down option of " One-time passwords Methos" and select TOTP .
• Accept the settings and save it.

• Download the Google Authenticator App or any other App that supports TOTP such as Microsoft Authenticator, Duo or Free-OTP

•  Login to the SONICWALL Appliance with the Admin credentials.

• A QR Code will be displayed on the Screen and an Emergency Scratch code

 NOTE: Please store the Emergency Scratch Code as it is the only way to login if the mobile device is lost or reset. or you need to login to CLI and disable the TOTP.

• Open the Google Authenticator App on the Mobile phone and Scan the barcode, Click on Begin

• Add an Account using scan a barcode 

• Once the barcode is scanned, the application will provide a 6-digit OTP

• Enter the OTP under the 2FA Code option on the Appliance Portal

• Click here to Continue

• Click on the Manage Tab to Log in