Authenticator Google

Google Authenticator is an application that implements two-step verification services using the Time-based One-time Password Algorithm and HMAC-based One-time Password Algorithm , for authenticating users. The service implements algorithms specified in RFC 6238 and RFC 4226.[2] Authenticator provides a six- to eight-digit one-time password which users must provide in addition to their username and password to log in to Odoo. Typically, a user installs the Authenticator app (Android, Apple) on a smartphone. To log in to Odoo that uses two-factor authentication, the user provides user name and password to Odoo and runs the Authenticator app. The app displays an additional six-digit one-time password , which asks the user what that password is. The user enters it, thus authenticating the user's identity. For this to work, a set-up operation has to be performed ahead of time: the admin provides a shared secret key to the user over a secure channel, to be stored in the Authenticator app. This secret key will be used for all future logins to the odoo. With this kind of two-factor authentication, mere knowledge of username and password is not sufficient to break into a user's account.