Two-Factor Authentication Token Management
Overview
The Token Management feature allows you to secure your Vodia PBX account with additional authentication methods beyond your password. You can manage various types of security tokens including:
- Passkeys: Secure cryptographic keys stored on your device
- App Tokens: Authentication tokens for applications
- TOTP: Time-based One-Time Password authentication
This additional layer of security helps protect your PBX system from unauthorized access even if your password is compromised.
Managing Your Security Tokens
Viewing Your Tokens
When you access the Token Management screen, you'll see a table with all your currently active security tokens. For each token, you can view:
- The token type (Passkey, App Token, or TOTP)
- Creation date and time
- Last access date and time
- IP address that accessed the token
- User agent (browser or application) that used the token
- Expiration date (if applicable)
This information helps you monitor access to your account and identify any potentially unauthorized usage.
Adding a TOTP Token
Time-based One-Time Password (TOTP) tokens provide a secure way to verify your identity using temporary codes that change every 30 seconds. To add a TOTP token:
- Click the Add button at the bottom of the token management screen
- A QR code will appear in a popup window
- Scan this QR code with your authenticator app (like Google Authenticator, Microsoft Authenticator, or Authy)
- Click Save to activate the token
You can click the Copy button to copy the TOTP setup information to your clipboard if you prefer to manually enter it into your authenticator app.
After setting up TOTP, you'll need to enter the current code from your authenticator app when logging in to your Vodia PBX account.
Deleting Tokens
To remove one or more security tokens:
- Check the box next to each token you want to delete
- Click the Delete button
- Confirm the deletion when prompted
Deleting a token means you will no longer be able to use it for authentication. If you delete all your tokens of a specific type, you may lose access to that authentication method.
Token Types Explained
| Token Type | Description | Use Case |
|---|---|---|
| Passkey | Cryptographic credentials stored securely on your device | Passwordless login using device biometrics |
| App Token | Authentication tokens for third-party applications | Integration with external services |
| TOTP | Temporary codes that change every 30 seconds | Two-factor authentication via authenticator apps |
Passkey
Passkeys are cryptographic credentials stored securely on your device that provide strong authentication without requiring you to remember complex passwords. They typically use biometric verification (like fingerprint or facial recognition) on your device.
App Token
App tokens allow applications to securely authenticate with your PBX account without requiring your password. These are especially useful for integrations with third-party services.
TOTP
Time-based One-Time Password (TOTP) tokens generate temporary 6-digit codes that change every 30 seconds. You'll need an authenticator app on your mobile device to use TOTP authentication.
Troubleshooting
Lost Access to Authenticator App
If you've lost access to your authenticator app (for example, if you've lost your phone):
- Try using an alternative authentication method if you have multiple factors set up
- Contact your system administrator who can reset your authentication factors
Token Not Working
If your token isn't being accepted:
- For TOTP: Ensure your device's time is correctly synchronized
- For Passkeys: Try another device where you've registered the passkey
- Check if the token has expired in the token management interface
Best Practices
- Regularly review your active tokens and delete any you no longer use
- Set up multiple authentication methods to ensure you don't lose access
- If you notice any suspicious access in the "Last access" column, delete that token immediately and change your password