Your password, no matter how complex, can be compromised: phishing, data breaches, brute-force attacks. Two-factor authentication (2FA) adds an extra layer of security by requiring a second element to log in. Infomaniak offers several 2FA methods. Here\'s how to enable and use them on a daily basis.
Create a Secure Infomaniak Account
What Is Two-Factor Authentication?
Two-factor authentication, often abbreviated as 2FA (Two-Factor Authentication), is based on a simple principle: to prove your identity, you must provide two elements of a different nature.
These factors fall into three categories:
- Something you know – Your password, a PIN code
- Something you have – Your smartphone, a physical security key
- Something you are – Your fingerprint, your face
2FA typically combines the first factor (password) with the second (a code generated by your phone or sent via SMS). Even if an attacker obtains your password, they cannot log in without also having access to your phone.
Why Enable 2FA on Your Infomaniak Account?
Your Infomaniak account centralizes critical resources: professional email, file storage, web hosting, domain names. A compromise of this account can have serious consequences:
- Access to all your professional emails
- Theft or deletion of your kDrive files
- Modification of your domains\' DNS records
- Fraudulent use of your services
2FA significantly reduces these risks. Even in the event of a successful phishing attack or a password found in a data breach, your account remains protected.
Infomaniak Recommendation
Infomaniak strongly recommends enabling 2FA on all accounts, especially for administrator accounts with access to service management.
Available 2FA Methods at Infomaniak
Infomaniak offers several two-factor authentication methods. Each has its advantages and constraints.
Authenticator App (TOTP)
This is the recommended method. An app on your smartphone generates a 6-digit code that changes every 30 seconds. This code is calculated from a secret key shared between the app and Infomaniak, without requiring an internet connection.
Compatible apps:
- Google Authenticator – Simple and effective (iOS, Android)
- Microsoft Authenticator – With cloud backup (iOS, Android)
- Authy – Multi-device with synchronization (iOS, Android, Desktop)
- FreeOTP – Open source (iOS, Android)
Advantages: works offline, very secure, free.
Disadvantages: requires having your phone within reach.
Physical Security Key (FIDO2/WebAuthn)
Physical security keys such as YubiKey or Titan Security Key offer the highest level of security. You plug in the USB key or hold it near your phone (NFC) to authenticate.
Advantages: immune to phishing, very secure, quick to use.
Disadvantages: requires purchasing a key (25-60 EUR), must be carried with you.
SMS (Not Recommended)
A code is sent via SMS to your phone. This method is better than nothing, but it has known weaknesses: possible interception (SIM swapping), dependence on mobile network.
Advantages: no additional app required.
Disadvantages: less secure, requires network coverage, vulnerable to SIM swapping.
Enable 2FA on Your Infomaniak Account
Follow these steps to enable two-factor authentication on your Infomaniak Manager account.
Log in to Infomaniak Manager
Go to manager.infomaniak.com and log in with your usual credentials.
Access the security settings
Click on your name in the top right corner, then on "My Profile". Select the "Security" tab.
Enable two-factor authentication
In the "Two-factor authentication" section, click "Enable". Choose your preferred method.
Set up the authenticator app
Scan the displayed QR code with your authenticator app. Enter the generated 6-digit code to confirm.
Save the recovery codes
Infomaniak provides you with single-use recovery codes. Store them carefully in a safe place (password manager, safe).
Set Up 2FA for Users in Your Organization
If you are an administrator of a kSuite organization, you can make 2FA mandatory for all users.
Enforce 2FA for All Users
- Log in to Infomaniak Manager
- Access your organization management
- In the security settings, enable the "Require two-factor authentication" option
- Set a grace period to give users time to set up their 2FA
Users who have not enabled 2FA within the allotted time will no longer be able to access their services until they have configured their second factor.
Train Your Users
Before enforcing 2FA, prepare your team members:
- Explain why 2FA is important
- Provide a step-by-step tutorial
- Recommend an authenticator app
- Organize a support session for those who are not comfortable
Daily Use of 2FA
Once 2FA is enabled, here is how your daily login works.
Logging in to Webmail or Infomaniak Manager
- Enter your email and password as usual
- Open your authenticator app
- Enter the displayed 6-digit code
- You are logged in
The extra step takes just a few seconds. You can check "Remember this device" to avoid entering the code each time you log in from the same browser.
Connecting Applications (Outlook, Thunderbird, Smartphones)
Email clients and mobile apps do not always support interactive 2FA. In that case, you need to use an app password.
- In Infomaniak Manager, go to "App Passwords"
- Create a new password for the relevant application
- Use this password (instead of your main password) in the application
App passwords are specific to each application and can be individually revoked if needed.
What to Do If You Lose Your Phone?
Losing the phone that generates your 2FA codes can be stressful. Here are the solutions.
Use a Recovery Code
When you enabled 2FA, Infomaniak provided you with recovery codes. Use one to log in, then reconfigure 2FA on your new phone.
Contact Infomaniak Support
If you no longer have access to your recovery codes, contact Infomaniak support. After verifying your identity, they can temporarily disable 2FA on your account.
Prevention Is Better Than Cure
To avoid these situations:
- Use Authy, which syncs your tokens across multiple devices
- Store your recovery codes in a password manager
- Set up a physical security key as a backup method
- Print your recovery codes and keep them in a safe
Additional Security Best Practices
2FA is an excellent security measure, but it should not make you neglect the basics.
Use a Strong, Unique Password
Even with 2FA, a good password remains important. Use at least 12 characters, mix letters, numbers, and special characters. Most importantly, never use the same password on multiple sites.
Use a Password Manager
Bitwarden, 1Password, Dashlane: these tools generate and store complex passwords. You only need to remember one password—the one for the manager.
Beware of Phishing
2FA protects against password theft, but not against real-time phishing. Stay vigilant against suspicious emails and always check the URL before entering your credentials.
Keep Your Devices Up to Date
Security updates fix vulnerabilities that could be exploited. Apply them promptly on your computer and smartphone.
Conclusion
Two-factor authentication is one of the most effective security measures you can implement. In just a few minutes of setup, you drastically reduce the risk of your Infomaniak account being compromised.
The TOTP method with an authenticator app offers the best balance between security and convenience. For the most sensitive accounts (administrators, server access), consider a physical security key.
Don\'t wait until you become the victim of an attack to take action. Enable 2FA today.
Ready to migrate to Infomaniak?
Contact us for a free 15-minute audit. We will analyze your situation and provide you with a personalized quote.
Request a free audit