If a user has added a 2FA method that supports FTP/SFTP/DAV, they can authenticate via these protocols by appending a valid 2FA code to the end of their password when authenticating. If using a Yubikey native 2FA method, you can append the 2FA code by inserting your Yubikey into your computer's USB port and pressing its button immediately after typing your password.

If using the SMS 2FA method, you will need to first initiate a login via the web interface to trigger an SMS code being sent to your phone. Once you get the code on your phone, do not use that code to login via web interface. Instead, use that code code to authenticate via FTP/SFTP/DAV protocols by appending that code to the end of the user's password.

Enabling 2FA for Existing FTP/SFTP/DAV Users

Existing FTP/SFTP/DAV users won’t be able to authenticate until they log into the Files.com web app to set up their 2FA method when 2FA is enabled, either site-wide or at the user level. This setup is required even if an admin allows these users to bypass two-factor authentication. If bypass is permitted by the admin, users will see an option to bypass 2FA during the setup process in the web app or under their user profile after setting up their 2FA. Once their 2FA method is set, users can log in to their corresponding clients by appending a valid 2FA code to the end of their password during authentication.

SFTP/SSH Keys with 2FA

SSH/SFTP Keys cannot be used with user accounts that require 2FA. You can configure 2FA to be bypassed for SFTP connections which will allow SSH/SFTP Keys to be used or you can implement external 2FA for a SSH/SFTP Key.