This makes it much more likely that it is the user accessing the data: even if someone has stolen the password, they'll need more than that to access the account. Users can also indicate when they're using a computer they trust and don't want to be asked for a verification code from that machine in the future.
Editions included:
Google Apps (free)
Languages included:
US English Only (Next Generation Control Panel)
How to access what's new:
- Google Apps Administrators can enable this option in the control panel in the ‘Advanced Tools’ section by checking the box ‘Allow users to turn on two-factor authentication’. Users still have to opt-in to use this feature and it is not possible to make this mandatory for all users. To see this new option, your control panel must be using the ‘Next generation’ version.
- Once your users manually enroll in 2-step verification, they may need to use access codes in addition to their verification codes. For installed applications that don’t have a 2-step verification field, your users will need to enter an application-specific password once per device or application in place of their regular password to access their Google Account.
Common devices and applications that require application-specific-passwords are: Gmail and Google Calendar on Android-based phones, ActiveSync for Windows Mobile and iPhone, and IMAP clients such as Thunderbird.
- At any time, administrators can un-enroll users from 2-step verification in the control panel in the user’s settings.
- If your domain still has to migrate over to the new accounts infrastructure, the enrollment process for users may be slightly different.
Note: This feature is being rolled out over the next several days so will not appear in your control panel immediately.
For more information:
http://gmailblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html
Help Center Overview and Setup Information
Get these product update alerts by email
Subscribe to the RSS feed of these updates