Desktop Apps Code-Based Authentication

Code-based device authentication is set by policy.  It requires users to request approval to log in to a desktop app or mobile app. When the request is approved, a code is created which the user must enter into the app to log in. Requests are approved in the user portal, but additional admin approvals may also be required.

Enabling code-based device authentication

To enable code-based device authentication:

  1. In the admin portal, go to Settings > Policies.
  2. On the Manage Setting screen, select the Policies tab.
  3. Open a policy for edit.
  4. In the User Policy tab, set Enable code based device authentication to YES


    Now, when a user logs in to a client app, an approval request appears in in the user portal. The user must approve the request to receive a code that is entered into the client app to successfully log in.
    How users log in with device authentication, below, shows how this process works.

How users log in with device authentication

Once code based authentication is enabled, the user can follow these steps to log in via a desktop app.
The following example uses the Sync application, but the procedure is the same for all of the desktop applications and the mobile apps.

  1. In the login screen, the user selects Device Authentication Code and then clicks Log in.

    The following dialog box opens.


  2. To get the device authorization code:

    1. The user logs in to the user portal, then clicks the arrow next to the username and chooses Settings..

    2. In the Settings screen, the user click the Devices tab.

    3. The user clicks the check next to Needs Approval.

      A dialog box pops up with the Device Authorization Code:

  3. The user copies the Device Authorization Code and pastes it into the Enter Device Code dialog box, then clicks Submit to log in.

Requiring admin approval as well as user approval for devices

The Enable code based device authentication setting lets users log in to desktop apps using a device authorization code without admin approval. You can also can configure FileCloud to require logins to desktop apps to be approved by admins before being approved by users. 

To require admin approval for device authentication:

  1. In the admin portal, go to Settings > Policies.
  2. On the Manage Setting screen, select the Policies tab.
  3. Open a policy for edit.
  4. In the User Policy tab, set Enable code based device authentication to YES
    The Require Admin Approval for Device Authentication setting becomes enabled.
  5. Set Require Admin Approval for Device Authentication to YES.

To approve a client device that has been sent to you for admin approval

  1. Go to Device Management in the admin portal to view the listing for the device approval.
    The device is listed with Status showing Needs Admin Approval and Access set to Blocked.
  2. In the Access column, change Blocked to Allowed.
    Now the Status column shows Needs User Approval, and the user must approve the client device (as shown above in How users log in with device authentication) and get an authorization code before log in can occur.