Sign in to the your Synology account, then from the options in the left hand column select "Security";

The title of the main section of the page will change to "Security", scroll down to the section "Security Key", then click on "Enable";

If you have not yet added any authentication factors you will be presented with the following messages, select ;

Two factor authentication can then be enabled using the instructions in the following instructions;

  • In order to add a Fido key as an authentication factor you will now need to select "2-Factor Authentication (2F)", then click ;

    You are now presented with the stages that will be followed when setting up the authentication method, click ;

    Confirm your identity by copying the code that has been sent to your email addresss (example below), then click ;

    At the "New Password" prompt, provide a strong password then click

    At this stage you may be asked to create a password for your account, if so supply the password then click ;

     


Once two-factor authentication has been enabled, you will provided with a QR code that will download an authentication app.

There is no need to download and install the app (as instead we will use our programmable token), so just click on the button;

You will be presented with a page that includes a QR code (see example below);

You can use the QR code to program our programmable tokens using the instructions found in the following procedure;

  • To program a SafeID/Diamond or SafeID/Pro token with a QR code, launch the SafeID/Diamond programming tool.  


    Click the Scan QR Code button 

    Before you scan the QR code please ensure that the clock on your computer is displaying the correct date and time.

    You can scan the screen for a QR code, or load from a file.

    If you are scanning the barcode on the screen please ensure that the QR code is not obscured by other windows, and if you have more than one monitor please ensure that both the app and the QR code are displayed on the main display (display 1).

    If you still have difficulty in scanning the QR code double check you only have the one instance of the app running, and that it is the latest version of the app.  In most cases when there are issues with scanning of the QR code the most likely cause is the QR code contains the wrong data and may need to be regenerated.  To test the QR code you could check that the code works correctly with the authenticator app it is intended for (e.g microsoft authenticator), and if this fails then you know that the QR code will need to be regenerated.


    Select Scan Screen.

    If succeeded, the Seed box should be filled with the token's seed data.


    Now, select your smart card reader from the Reader drop-down list, e.g. "HID OMNIKEY 5427 CK"


    Press the Connect button


    Now, switch on a SafeID token and place it on the reader. 

    The tool will read out the token's serial number and time, and display them:


    If you want to correct the clock on the token, then leave the "Sync Token Clock" checked, but first ensure the time on your pc is set correctly.

    Press the Burn button


    The token is successfully programmed.

    Switch off the token and switch it on again to generate a new code (the token may only use the new seed after being reset)

Verifying your token

Once you have programmed your token you will need to verify it with Synology.

At the "Verification code" prompt, supply a code from you newly programmed hardware token, then click ;

Your programmable token is ready to supply OTP codes when you next login to your Synology account.

Related Articles

  • No labels