# TOTP Based

Time-based One-Time Password (TOTP) authentication is a two-factor authentication mechanism that uses a time-based algorithm to generate a unique one-time password for user authentication. TOTP is commonly used in security systems, including various two-factor authentication (2FA) applications and services.

In Cymmetri the totp is received on the users mobile device during the login attempt after having it been configured during first login. 

During login the user is shown the option of Passwordless if it has been enabled by the admin user.

<figure><img src="https://content.gitbook.com/content/iOkb5tnBpg4wioRhBnTB/blobs/4sOUGGfouiBHVjm1nL1r/image.png" alt=""><figcaption></figcaption></figure>

The user clicks on "Login without password" to proceed with Passwordless authentication.&#x20;

<figure><img src="https://content.gitbook.com/content/iOkb5tnBpg4wioRhBnTB/blobs/JCWbWKOnHMEwuOhPdCA9/image.png" alt=""><figcaption></figcaption></figure>

The user clicks on TOTP based option.

<figure><img src="https://content.gitbook.com/content/iOkb5tnBpg4wioRhBnTB/blobs/iFkhP0sLEm5RJO3GCsZ8/image.png" alt=""><figcaption></figcaption></figure>

A TOTP for the user has been configured on the users Cymmetri mobile application. The user inputs the totp and is logged in into the system