Two-factor Authentication

Two-factor authentication (2FA) is a means of identifying a user through two separate pieces of information or identification. For ARIN Online, these two pieces are your account password and a one-time password generated using a third-party mobile authenticator or provided through SMS or a voice call. By combining the two proofs of identity that an unauthorized user is unlikely to possess, two-factor authentication provides an increased level of security for ARIN Online users.

For ARIN Online’s 2FA, the two pieces of information that identify you as a user are your account password and a one-time password generated by either a third-party mobile authenticator or SMS/Voice Call.

Enabling Two-factor Authentication through an Authenticator Application

  1. Obtain a compatible third-party mobile authenticator. (You can use any third-party mobile authenticator with your ARIN Online account, so long as it meets the requirements set forth in RFC 6238. ARIN tested its two-factor authentication functionality using Google Authenticator.)

  2. Log in to your ARIN Online account. If you have yet to set up two-factor authentication, an alert will appear on the Dashboard which reads ‘Two-Factor Authentication is not set. Configure it now.’ Select Configure it Now. (Two-factor authentication settings can also be accesssed by selecting Settings from the menu under your name.)

two factor authentication is not set

  1. Under the first step of ‘Select Method,’ confirm your choice of ‘Authenticator Application,’ and select Continue.

Select Authenticator Application

  1. In the second step of ‘Verify Method, you can choose one of the following:
  • Scan the displayed QR code with your authenticator application; or
  • Enter the 16-character key that is displayed beneath the QR code into your authenticator application.

Verify Method

  1. Your authenticator should start providing time-based six-digit codes. To test your authenticator, enter the time-based code into the field at the bottom of the page and choose Verify. If successful, the process will advance to the third step, covered below under Receiving and Saving your 2FA Recovery Codes.

Enabling Two-factor Authentication through SMS or Voice

  1. Ensure your country or geographical area is eligible to use SMS/Voice Call. If so, continue. If your country or geographical area is not eligible, you will need to use a third-party authenticator application.

  2. Log in to your ARIN Online account. If you have yet to set up two-factor authentication, an alert will appear on the Dashboard which reads ‘Two-Factor Authentication is not set. Configure it now.’ Select Configure it Now. (Two-factor authentication settings can also be accesssed by selecting Settings from the menu under your name.)

two factor authentication is not set

  1. Under the first step of ‘Select Method,’ confirm your choice of ‘Text Message’ or ‘Voice Call,’ and select Continue.

Select Text Message or Voice Call

  1. Under the second step of ‘Verify Method,’ Enter your mobile phone number in the field and select Send Code.

  2. You will be prompted to enter the code delivered by SMS or Voice, and then select Continue. If successful, the process will advance to the third step, covered below under Receiving and Saving your 2FA Recovery Codes.

Receiving and Saving your 2FA Recovery Codes

Upon completing the Verify Method step, you will be provided a set of 16 2FA Recovery Codes that can be used if you lose access to your authenticator or phone number. You can enter any of these codes once each to log in to ARIN Online.

Recovery Codes

Important: Save the 2FA Recovery Codes in a password management tool, print it out, or write it down and store it in a safe place. These codes will only be displayed once.

Select Activate 2FA to complete the setup process.

Lost Access To Your Authenticator or SMS/Voice 2FA Number?

If you have lost access to your third-party authenticator or the phone number associated with your SMS/Voice 2FA and cannot log in to your account, but you do have your 2FA Recovery Codes:

  1. Enter your username and password to log in to your ARIN Online account.
  2. When prompted to enter your two-factor authentication code, choose Can’t Access your Phone?
  3. In the Recovery Code field, enter one of your 2FA Recovery Codes.

If you cannot log into your account and you do not have your 2FA Recovery Codes:

  1. Call ARIN Registration Services at +1 703-227-0660, Monday - Friday, 7:00 AM - 7:00 PM.
  2. Provide the answers to your account security questions.

Disabling Two-factor Authentication

If you can access your third-party authenticator:

  1. Log in to your ARIN Online account and select Settings from the menu under your name.
  2. In the Security Info section, from the Actions menu, choose Manage Two-Factor Authentication.
  3. Choose Remove as linked in the first senetence of Select Method.
  4. Confirm your choice by selecting Remove 2FA.
  5. Choose Disable 2FA.
  6. Confirm your choice.