Jump to content
Lehman Russ

Two Factor Authentication Guide

By Lehman Russ, in Help & Support

Recommended Posts

Lehman Russ    13

Lehman Russ
Posted (edited)

I have discovered numerous posts about people having their accounts hacked. First of all, if you have been hacked (and banned as a result) Account security is YOUR responsibility. This means that you receive no compensation, replacement, or restoration of ANY lost items or accounts. Learn from your mistakes, cut your losses and move on. Right now you might be thinking "F*** YOU MATE" and "This guy is a dick", but Elysium and Nostalrius staff have said numerous times in numerous posts that even you are the victim, Account security is YOUR responsibility and your lost items and/or banned accounts WILL NOT be restored.

Now to move on to actually securing your account and what 2FA is:

Quote

Two-Factor Authentication

As the first vanilla legacy server to use 2FA we feel it will not only protect countless accounts from hackers, but is also a big step in the direction of establishing legitimacy. Now, let’s get into the details of how the system will work.

You can enable one of the two following solutions:

IP Lock with authenticator: if you log in from an IP that is different from the last one you used to connect to the game, you will have to enter a verification code.

Always use authenticator: you will always have to enter a verification code on login.

Both solutions work for web and game authentication.

In order to enable (or disable) a two-factor authentication solution, you will have to confirm it through an email. We know there have been issues in the past with our web servers reaching the allotted amount of emails we can send certain providers such as Yahoo and Hotmail. Because of this, *we ask that you be patient in waiting for the confirmation emails and only retry them once an hour.

While this authentication will be optional, we strongly advise that you keep it enabled at all times. With the protection offered by 2FA in conjunction with having a strong, unique account name and password, your account is impenetrable. To add to that, you can also change your password regularly.

 

The following video is made by TheKrugLife to show you how to implement 2FA on your account

 

HOW TO CREATE A STRONGER PASSWORD

In this section I am going to give you a few tips on how to create a stronger password (you should really be putting this in to practice everywhere, as I was once the victim of a hacked Hotmail account and it took me a week to get back control from Microsoft Support)

So to begin with, you should be using a password that is a MINIMUM OF 8 CHARACTERS LONG, using a combination of upper and lower case letters, numbers and symbols. I will give you an example: x96*tt1_o4fvz is a very strong password because it is completely random and does not include any words from the English dictionary that hackers use to Brute Force Hack your account. If you have difficulty remembering such passwords, or are worried about losing what you have written down, there is a solution.

KeePass is a FREE password manager that will store ALL of your passwords. So instead of trying to remember 97547862 passwords for each one of your accounts in existence, you now only have to remember ONE for Keepass. Keep in mind that if you do forget your KeePass password, you will be unable to log in and their support WILL NOT break it open for you. Another very handy and useful feature is that it will generator a random password for you based upon certain specified criteria, such as character length, encryption protocol, etc.

AVAST! Antivirus offers a similar service (Although I have not used it before).

 

Edited by Lehman Russ
1

Share this post

Link to post
Share on other sites

Lehman Russ    13

Lehman Russ
Posted

I tried to keep the video out of the quotation window from the news post, but apparently the HTML isn't working the way i thought it would.. oh well.. Good luck!

Would be great if a mod could sticky this post so we can avoid "How do I use 2FA" posts in the future. :)

0

Share this post

Link to post
Share on other sites

skeggzy    0

skeggzy
Posted

Wonderful guide,

I'm having issues for some unknown reason though.

 

Signed up for IP Auth, Got Google Authenticator on my phone, scanned the QR code put the number in on the website..

Then I get the following message "The six-digit code you provided did not work. Please provide the latest one from the application.".

 

I've tried Duo Mobile too.

I'm lost on what to do...

0

Share this post

Link to post
Share on other sites

Fogged    0

Fogged
Posted
On 1/15/2017 at 0:20 PM, Elby12 said:

@skeggzy how did you end up getting it to work? im having the same issue

Did you authorize Elysium account in the application (via text or QR code you get in email)? Also keep in mind that the application generates new 6 digit code every 20-30 seconds or so and whenever new code is generated - the old one expires.

PS: works like a charm for me.

0

Share this post

Link to post
Share on other sites

Daedric    4

Daedric
Posted

How did you get the authentication to work? I can't change my password (stays at the 'change password' screen, and I get the invalid code when trying to authorize it via email.

0

Share this post

Link to post
Share on other sites

Isenheart    1

Isenheart
Posted
1 hour ago, Daedric said:

How did you get the authentication to work? I can't change my password (stays at the 'change password' screen, and I get the invalid code when trying to authorize it via email.

I have the same problem.

0

Share this post

Link to post
Share on other sites

Lehman Russ    13

Lehman Russ
Posted
5 minutes ago, Serpentsaint said:

 keep the damn goldsellers out.

Get Spam Throttle ingame. I find it does a better job at filtering the message spam than .wr

The video was created by TheKrugLife. I do not take ownership of the video I am merely providing information he put together.

 

0

Share this post

Link to post
Share on other sites

Kiyara    0

Kiyara
Posted

I got the same problem

Tried Google Authenticator and Duo Mobile, got the same error message with both.

"The six-digit code you provided did not work. Please provide the latest one from the application."

Also tried QR code and the code both don`t work for me.

 

I tried it again and again since the 6th but it`s always the same :(

0

Share this post

Link to post
Share on other sites

Bagiggia    1

Bagiggia
Posted (edited)

When i try to log in and use my authenticator it doesn't work, it says "The six-digit code you provided did not work. Please provide the latest one from the application.". I tried many times with different codes but the result doesn't change.

EDIT: Ok,i solved this issue with settings->time corretion for codes->synchronize

Edited by Bagiggia
1

Share this post

Link to post
Share on other sites

Irisai    8

Irisai
Posted
On 1/11/2017 at 0:18 PM, skeggzy said:

Wonderful guide,

I'm having issues for some unknown reason though.

 

Signed up for IP Auth, Got Google Authenticator on my phone, scanned the QR code put the number in on the website..

Then I get the following message "The six-digit code you provided did not work. Please provide the latest one from the application.".

 

I've tried Duo Mobile too.

I'm lost on what to do...

 

this is the exact same thing that happens to me. How did you fix it?

0

Share this post

Link to post
Share on other sites

night.owl    0

night.owl
Posted

It's sad to hear that It's impossible for me to recover my account but i will take your guide into consideration. Thanks :(

On 1/11/2017 at 11:47 PM, Lehman Russ said:

I have discovered numerous posts about people having their accounts hacked. First of all, if you have been hacked (and banned as a result) Account security is YOUR responsibility. This means that you receive no compensation, replacement, or restoration of ANY lost items or accounts. Learn from your mistakes, cut your losses and move on. Right now you might be thinking "F*** YOU MATE" and "This guy is a dick", but Elysium and Nostalrius staff have said numerous times in numerous posts that even you are the victim, Account security is YOUR responsibility and your lost items and/or banned accounts WILL NOT be restored.

Now to move on to actually securing your account and what 2FA is:

 

HOW TO CREATE A STRONGER PASSWORD

In this section I am going to give you a few tips on how to create a stronger password (you should really be putting this in to practice everywhere, as I was once the victim of a hacked Hotmail account and it took me a week to get back control from Microsoft Support)

So to begin with, you should be using a password that is a MINIMUM OF 8 CHARACTERS LONG, using a combination of upper and lower case letters, numbers and symbols. I will give you an example: x96*tt1_o4fvz is a very strong password because it is completely random and does not include any words from the English dictionary that hackers use to Brute Force Hack your account. If you have difficulty remembering such passwords, or are worried about losing what you have written down, there is a solution.

KeePass is a FREE password manager that will store ALL of your passwords. So instead of trying to remember 97547862 passwords for each one of your accounts in existence, you now only have to remember ONE for Keepass. Keep in mind that if you do forget your KeePass password, you will be unable to log in and their support WILL NOT break it open for you. Another very handy and useful feature is that it will generator a random password for you based upon certain specified criteria, such as character length, encryption protocol, etc.

AVAST! Antivirus offers a similar service (Although I have not used it before).

 


 

0

Share this post

Link to post
Share on other sites

Jarov    0

Jarov
Posted

Today, this method of protection in terms of 2FA is not quite relevant, there are more and more methods of hacking using social engineering. Therefore, a reasonable solution in this case is to secure your system from the inside at the windows login stage of the user. Generating one-time passwords using various security tokens contributes to a guaranteed level of protection for winlogon directly. And if the system is protected from the inside, when the password of the system user has guaranteed protection by the method of windows two factor authentication it is safe to say that this method is more rational to use.

0

Share this post

Link to post
Share on other sites

emilybacker    0

emilybacker
Posted

Hello,

I'm having issues for some unknown reason. didn't understood, Signed up for IP Auth, Got Google Authenticator  back also , scanned the QR code  omegle, Then I get the following message "The six-digit code you provided did not matche, try another time.".  I'm lost on what to do.

0

Share this post

Link to post
Share on other sites

kentfast    0

kentfast
Posted

Hello,

I'm having problems, but no one really knows why. I didn't get it, I signed up for IP authentication, I also have Google Authenticator, I checked the QR code, then I get the accompanying message omegle "The six-digit code you provided does not match, try another time . ". I do not know what to do.

0

Share this post

Link to post
Share on other sites

fearlessly    0

fearlessly
Posted

To allow (or hinder) a two-factor verification agreement, you must affirm it via email. We realize Omegle.com there have been issues in the past with our web servers getting to the distributed extent of messages we can send to specific providers like Yippee and Hotmail. In this sense, * we ask that you exercise Omegle restraint by remaining seated for the affirmation messages and try them again once 60 minutes.

0

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Go To Topic Listing Help & Support
×