2-Factor Authentication & Authorised Devices

 

What's on this page:

 

As part of the security measures we have in place to protect your account and data, you are required to authorise each new device you use to log into AutoGate, including a new browser or device. In addition, we have implemented 2-Factor Authentication (2FA) to add an extra layer of security, designed to make sure that you're the only one who can access your account.

 

How to authorise a new device/browser & login with 2FA

1. Log into AutoGate on your device via https://autogate.co/ for desktop or via the mobile website using the same URL.

2. Enter your username and password, and hit submit.

3. You will get a device authorisation pop-up, you will now receive an email from us with further information.

4. On the email you received, click on the device authorisation link. 

5. Now, on the same device; enter your username and password into AutoGate again.

6. You will receive the 2FA pop-up, just enter in the verification code and you will be able to proceed.

Each time you log in with a new device, you will need to follow this process to authorise it.

 

2FA & device authorisation issues

 

Why isn’t AutoGate remembering my authorised device?

AutoGate uses cookies to remember your authorised device or browser. The session cookie cannot be passed to any machine other than the one that generated the cookie. The session cookie allows the browser to re-identify itself to the carsales network.

Note if you clear your browser’s cookies or use a new browser, we’ll prompt you to re-authorise your device or browser the next time you log in. 

Any user that uses 'Incognito' mode, private browsing, blocks cookies or has their security settings set to clear cookies each time a browser is closed, will not be able to store their session cookie and would need to authorise their device each time they log in. 

If you're repeatedly prompted to re-authorise your device on the same browser and device, it may be due to strict browser settings. This implies that your browser is set to clear cookie data every time it's closed. Refer to the steps below to check or adjust your browser settings, depending on the browser you're using:

Chrome

1. On your computer, open Chrome.

2. At the top right, click the 3 vertical dots > Select settings.

3. Select 'Privacy and Security' (left side of screen) > Select Site Settings > Scroll down & Click on Additional Content Settings.

4. Click "On-device site data" and ensure 'Delete data sites have saved to your device when you close all windows' is not selected.

Microsoft Edge

1. On your computer, open Microsoft Edge.

2. At the top right, click the 3 horizontal dots >  Settings

3. Select  Privacy, search, and services (left side of screen)

4. Click on 'Choose what to clear every time you close the browser'.

5. Ensure 'Cookies and other side data' & 'Cached images and files' is not toggled on.

Mozilla Firefox

1. On your computer, open Mozilla Firefox.

2. At the top right, click the 3 horizontal lines (hamburger icon) > select settings.

3. Select 'Privacy & Settings' (left side of screen).

4. Scroll down to 'Cookies and Site Data'.

5. Ensure 'Delete cookies and site data when Firefox is closed' is not ticked.

Internet Explorer

AutoGate is not supported by Internet Explorer, we suggest using one of the above mentioned browsers instead.

 

Not receiving 2FA codes

It can take up to 10 minutes for the SMS to come through. If it's been longer, the SMS may be in your spam folder, or it's being blocked by your mobile security settings.

To unblock AutoGate SMS’s, please follow the below troubleshooting steps:

iPhone

  1. Turn phone off and on. In some instances, this resolves the issue.
  2. Re-set network settings. To do this, head to settings > general > transfer or reset iPhone > reset > reset network settings.
  3. Then try logging into AutoGate again to see if you receive the 2FA code.

Android

  1. Turn phone off and on. In some instances, this resolves the issue.

  2. Check SPAM folder. Please note SMS filter on phone may be turned off, particularly after an update, which causes messages to fall into the spam folder.
    The SPAM folder can be accessed by going to your messages > clicking on your profile icon > click on 'Spam and blocked'.
  3. Check message centre number is correct. The correct message centre number needs to be saved in the phone to ensure an SMS is received. 
    To ensure the correct AutoGate message centre number is saved in your phone, follow the below steps:

    Go to messages > Select 3 vertical dots at top right of screen > then click settings > select more settings > click test messages > then click message Centre > Here you can enter the message centre number: +61415011501 > click set. See a visual guide here.

  4. Check Default Messages have not changed after an update:

    Settings > Apps > Select Default Apps > Select SMS App > Set to 'Messages - this app will be allowed to send you notifications...."

  5. Open a new internet browser and try logging in. 2FA should be received via mobile.

 

The 2FA code is not working

2FA codes via SMS expire after 5 minutes or if a new code is requested. Email 2FA codes expire after 15 minutes. Please ensure to use the most recent code.

If your code expired, you can request a new code by clicking the ‘Resend Code’ button. Alternatively, entering your username and password again will prompt a new code to be resent.

 

How can I update my mobile number associated with 2FA?

To update your mobile number associated with 2FA codes by going to the top right-hand corner of your AutoGate page and clicking the silhouette; followed by clicking your name under "profile".

 

mceclip0.png

From here, you can edit the number associated with your profile. This will mean the verification code is sent as a text each time you receive the 2FA prompt.

 

Can I turn off 2FA and/or device authorisation?

No. We require device or browser authorisation to help protect your account & data. It’s not possible to turn off or opt out of device authorisation or 2FA.

Device authorisation alerts you when a new device or browser tries to login and access your data.

2FA is an additional layer of security used to reduce the risk of compromised passwords. If a password is hacked, guessed, or even phished, that's no longer enough to give an intruder access to your account. Without the 2FA code, the password is useless.

If you are having issues with receiving any of these emails or codes, please reach out to support@carsales.net.au or alternatively call through on 1300 728 800.

 

 

 

Was this article helpful?
Have more questions? Submit a request