Skip to main content


Connecting to Control Center

Access to Control Center is done in a web browser via user accounts. You will receive your login information by email once your account has been created.


For the list of supported web browsers, refer to this section.

Use two-factor authentication (2FA)

GravityZone Cloud platform uses by default two-factor authentication (2FA).

Two-factor authentication adds an extra layer of security to GravityZone accounts, by requiring an authentication code in addition to Control Center credentials. 2FA requires downloading and installing the Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator app on a device such as a smartphone or computer. The authentication app generates a six-digit code each 30 seconds. To complete the Control Center login, after entering the password, the user will have to provide also the six-digit authentication code.

When connecting to Control Center using 2FA, follow these steps:

  1. Open your web browser.

  2. Go to the following address:

  3. Enter the email address of your account and click Next.

    Enter your username and click Next.

  4. Enter the password of your account and click Next.

  5. When connecting for the first time, configure two-factor authentication and enter the required six-digit code. Learn more.

    By default, you must enter the six-digit code from your authentication app every time you log in.


    To skip this step, select the Trust this browser option so that GravityZone does not require the six-digit code for up to 90 days.


    The Trust this browser option is disabled by default. As an administrator, you can enable it and configure the interval for trusting browsers for all accounts under your company, including yours, in the My Company > Authentication tab. Learn more.

    To revoke the current device or all devices that skip the six-digit code for your account, refer to this topic. To revoke all devices for other accounts, refer to this topic.

    If you have selected Trust this browser, but GravityZone still requires the six-digit code when you log in again, check the troubleshooting scenarios in this topic.

  6. Agree to Bitdefender Terms of Service and click Continue to log in.

Configure two-factor authentication


This step is part of the initial login to GravityZoneControl Center.

When connecting for the first time in Control Center and your account has two-factor authentication enforced, you are prompted to enable two-factor authentication in a configuration page, after entering GravityZone credentials. Follow these steps:

  1. Download and install on your device, such as a smartphone or a computer, Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator compatible with the standard RFC6238.

    • Learn how to download and install Google Authenticator here.

    • Learn how to download and install Microsoft Authenticator here.

    • Learn how to configure an authenticator on your computer here.

  2. On your device, open the authenticator.

  3. In the Add an account screen, scan the QR code from the GravityZone configuration page, to link the app to your GravityZone account. Alternately, use the secret key displayed under the QE code (copy and paste it if you use a computer).


    This action is required only once.


    Make sure to copy and save the secret key in a safe location. Click Print a backup to create a PDF file with the QR code and secret key. If the device used for activating two-factor authentication is lost or replaced, you will need to install Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator - compatible with the standard RFC6238, on a new device and provide the secret key to link it to your GravityZone account.

    If you did not have the secret key, contact your Bitdefender administrator to reset two-factor authentication.

  4. Enter the six-digit code from the authenticator in the Authentication code field.

  5. Click Enable to complete the feature activation and to log in to Control Center.

If you do not have an authenticator yet, click the Skip button to log in directly to Control Center. You can skip 2FA five times only. At the sixth login attempt, you are not able to log in without two-factor authentication.

Use single sign-on (SSO)

To connect to Control Center using single sign-on with an Identity Provider (IdP), follow these steps:

  1. Open your web browser.

  2. Go to the following address:

  3. Enter the email address of your account and click Next.

    GravityZone redirects you to the authentication page of your Identity Provider.

  4. The Identity Provider checks if you have already been authenticated. If so, you automatically log in to Control Center.

    If not, you need to authenticate with your Identity Provider credentials.

  5. The Identity Provider validates your credentials and redirects you to GravityZoneControl Center.

  6. Following the validation of a token received from Identity Provider, GravityZone provides you access into Control Center.

For details and configuration procedures with single sign-on (SSO) in GravityZone, refer to Configuring single sign-on using a 3rd party Identity Provider.


You cannot use at the same time single sign-on (SSO) and two-factor authentication (2FA) in GravityZone.