You can use Time-Based One-Time Password (TOTP) as a second authentication factor with Access Manager. TOTP uses a six-digit number (OTP) in addition to first authentication (for example, username, password) to log in to protected services.
The first step is to register the TOTP client with the secret key. This secret key is used for all future log in to the website.
Typically, users download and install the TOTP app on their devices. To log in to a website or service that uses two-factor authentication, in addition to the user name and password, users enter an OTP generated by the TOTP app. Access Manager validates the OTP and authenticates the user.