Multi-Factor Authentication (MFA) requires you to enter a one-time password (OTP) generated by an external application in addition to your user credentials.
MFA adds a critical layer of security when you access JFrog applications. Even if your password is compromised, attackers cannot access your account without the second authentication factor.
To enable MFA for your MyJFrog user account:
On your mobile device, install one of these authentication applications:
FreeOTP
Google Authenticator
Microsoft Authenticator
Log in to MyJFrog. In the top bar, click the User Menu (the icon with your initials) and click My Profile. The My Profile panel opens.
In the Password and Security area, click Enable MFA.
Note
You cannot cancel this procedure once you click Enable MFA. Only click this option after you install an authentication application, and when you are ready to enable MFA.
To secure this sensitive action, a JFrog Login System dialog appears. Enter your user credentials.
The Multi-Factor Authentication Setup dialog appears.
Follow the setup flow indicated by the authenticator app. Typically:
On your mobile device, open the authenticator app and choose to add an account.
In MyJFrog, scan the QR code to register the JFrog Platform as a new authenticated application.
Enter the one-time code generated on your mobile device to confirm the new account.
You may see a Sign out from other devices checkbox in the mobile app. When this option is selected, the app logs out all other current sessions. This option is not required to enable MFA in MyJFrog.
When the new MFA account is successfully created, the MyProfile panel reappears. The MFA setting has the value
MFA is currently enabled.
Tip
If you switch mobile devices or need to reconfigure MFA, repeat this process.
For any issue (password reset not working, lockout, etc.) contact service@jfrog.com or JFrog support.