Exoguard Docs
  • Introduction
    • Quick Start
  • Commands
  • Tutorials
    • Permissions
    • Enroll yourself
      • WebAuthn
    • Audit webhook setup
      • External audit webhooks
    • Request a custom link
  • Service
    • Access levels
    • Subscriptions
    • Privacy Policy
    • Terms of Service
Powered by GitBook
On this page
  • Install a TOTP application
  • Start an enrollment session
  • Method #1: scan the QR code with your authenticator (recommended)
  • Method #2: manually enter the secret key in your authenticator
  • Confirm your enrollment
  • Copy your enrollment from another server
  1. Tutorials

Enroll yourself

You have to enroll yourself on a server before roles can be assigned to you.

Required permissions: right to use the /enroll command (default: everyone).

This tutorial assumes you are going to enroll with a TOTP authenticator, not a passkey.

If you want to use WebAuthn instead, please start an enrollment session then click on the blurple WebAuthn button to get started. While the menus are straightforward, check out our WebAuthn tutorial page for more information.

Install a TOTP application

Before you begin, you will need a way to generate time-based one-time passwords (TOTP).

There are many supported TOTP applications you can use:

  • 2FAS (Android / iOS / Browser)

  • Google Authenticator (Android / iOS)

  • Microsoft Authenticator (Android / iOS)

  • Twilio Authy Authenticator (Android / iOS & macOS)

  • 2fast (Windows)

Feel free to use the software or application you prefer, be it in the list or not.

Start an enrollment session

You can start a new enrollment session even if you are already enrolled on a server. In that case, you will be asked to authenticate with your TOTP before you can proceed.

To begin, type the /enroll command on a server to generate a new QR code and secret key:

Note: the QR code contains an otpauth:// URL with your secret key in it. While it is recommended to securely backup one of them, you don't need both.

Method #1: scan the QR code with your authenticator (recommended)

Do not scan the QR code with the Discord mobile app, it will not work!

If a bots asks you to do that, it's 100% a scam to steal your Discord account.

With Google Authenticator as an example:

  1. Open the app, click on Add a code or the bottom-right + sign

  2. Select the Scan a QR code option and allow the app to take pictures

  3. Reveal the QR code spoiler on Discord then scan it with the app as intended

  4. Done, the app should show a 6-digit code (TOTP) that changes every 30 seconds

Method #2: manually enter the secret key in your authenticator

As a reminder, do not give your secret key to anyone, not even to:

  • An Exoguard representative (we will never ask for it)

  • Your server owner (they don't need it at all, trust us on that)

  • A Discord employee (they don't need it either, they don't care)

  • A family member (especially not your little brother, of course)

  • The President of the United States of America (just in case)

  • Your BLÃ…HAJ (it's sweet as heck but you really never know)

  • Anyone, really, don't trust anybody else with it, just keep it

With Google Authenticator as an example:

  1. Open the app, click on Add a code or the bottom-right + sign

  2. Select the Enter a setup key option and set a custom account name

  3. Reveal the secret key spoiler on Discord then write it in the Your key text field

  4. Make sure the selected type of key is Time based which is the default setting

  5. Done, the app should show a 6-digit code (TOTP) that changes every 30 seconds

Confirm your enrollment

If you want to backup your QR code or secret key, do it before confirming your enrollment. Upon confirmation, the ephemeral message will be edited so they will be definitely removed.

Once your authenticator application shows a TOTP, you need to confirm it on Discord:

  1. Click the Confirm enrollment button to display a confirmation modal

  2. Write the authentication code that is currently displayed by your authenticator in it

Click the Submit button and you're done, you should get a confirmation message:

Once you are enrolled with Exoguard on your server, congratulations! The server owner or a server administrator can now use the /config roles add command to assign you one or more roles.

If your enrollment session has expired, please use /enroll again. The previously generated QR code and secret key are no longer valid. They can be deleted if you have saved them somewhere else.

Copy your enrollment from another server

As you may have noticed from the above screenshots, enrollment sessions also allow you to copy your enrollment data over from another Discord server. The button becomes available when you have already enrolled successfully on at least one other Discord server.

This feature is useful if you have to enroll on multiple related Discord servers.

It will copy your secret key and passkey assignations but will not synchronize or link the Discord servers in any way, your enrollments will therefore remain fully independent.

If you click the copy button, you will be asked to select a Discord server:

Once you have selected the source server, your enrollment will automatically be confirmed.

PreviousPermissionsNextWebAuthn

Last updated 7 months ago

Screenshot of an ephemeral message containing a QR code and a secret key, both marked as spoilers.
Screenshot of an enrollment confirmation modal seen on top of the ephemeral enrollment message.
An ephemeral success message, confirming the enrollment is done.
Screenshot of an ephemeral message asking the user to select the server from which to copy their enrollment data.