How To Set Up Authenticator Osrs

The warning players get if they practice not have Authenticator active on their account.

The RuneScape Authenticator is an additional layer of protection players tin can utilise on their accounts. It replaces the Jagex Account Guardian (JAG), by using an RFC-compliant fourth dimension-based one-fourth dimension password (TOTP) compatible with Google Authenticator. This algorithm can be used both on supported mobile devices and in desktop implementations. This arrangement works for both Former School RuneScape and RuneScape 3, dissimilar the JAG did previously.

Also having an extra 20 banking concern spaces bachelor when active, players are required to set upwards the Authenticator in social club to be able to receive a pair of fancy or fighting boots in the Stronghold of Security. In add-on, having it set up up is required for Solztun to imbue the player'due south skull sceptre. Should players disable the Authenticator, the skull sceptre will revert back to its regular state.

Setting up [edit | edit source]

To set upwards the RuneScape Authenticator, a thespian must visit the Authenticator landing folio. Jagex generates a random eighty-scrap clandestine cardinal unique to each user and presents it as a 2-dimensional barcode and as a 16-graphic symbol Base32 string. Many mobile devices can read the barcode directly through their photographic camera, which is equivalent to entering the Base32 string manually. The implementation generates a 6-digit code every 30 seconds based on the key and epoch time.

Once set upwards, players are prompted to enter the 6-digit time-based code whenever they log in to the game using an untrusted computer. Jagex implements a ten-infinitesimal window (5 minutes on either side of the bodily time) to enter the correct code to allow for a possible lack of synchronisation between Jagex'due south server fourth dimension and thespian devices.

Players can cull to trust the computers on which they play RuneScape for up to 30 days or choose to enter a lawmaking every fourth dimension they wish to play.

Players tin also choose to use the Authenticator for their bank PIN instead of the stock-still four-digit PIN. Withal, the four-digit PIN is not obsolete. Logging into the bank or the Grand Commutation from the RuneScape Companion app still requires the iv-digit PIN. Players who choose to stop using the authenticator as the bank Pivot revert dorsum to the final iv-digit Pin used.

To disable the authenticator, click on the "disable authenticator" link. Jagex sends an email containing a link to disable the authenticator to the electronic mail address registered for that account. It is highly encouraged that the email associated with the business relationship require 2-step authentication and then that the RuneScape authenticator can non be easily removed. That is, information technology is suggested that the electronic mail be tied to a mobile device either by texting or a call before a new calculator can gain access to said electronic mail.

Setting upward on a new device [edit | edit source]

Players who have purchased new devices will have to re-download the app on their devices, disable the Authenticator via the RuneScape mainpage, and re-enable it. Afterwards Jagex has sent the email containing a link to disable it, players will have to follow the aforementioned steps to set the Authenticator on their new devices.

Alternative to using mobile phone for authenticator codes [edit | edit source]

Players who cannot scan the setup QR code, or simply want an alternative may employ Authy.

Authy is an app trusted by Jagex, that has the aforementioned basic functionality as other applications like Google Authenticator, allowing for an extra layer of business relationship security.

You can read about Authy on the support department of the official RuneScape site.

The main advantage of using Authy is that you tin can easily log dorsum into the app, continue receiving codes, retain the extra security, and non worry about if you go a new phone or mobile number, which doesn't run a risk problems logging back into RuneScape or require the need for Account support, similar it could when using Google Authenticator.

Trivia [edit | edit source]

On release, although the authenticator was stated to trust the computer for thirty days if selected, it only did and so for 14 days. It at present trusts the calculator for the stated 30 days.
The authenticator cannot be enabled without having a character proper name set.