Three options for enabling/declining multi-factor authentication use; all users, administrators only or decline feature.
Multi-factor authentication requires the user to enter additional information when logging in beyond the normal username and password. This is typically done with a third-party application that the multi-factor authentication is tied to. During the login process, an additional authentication code is generated by the third-party application that must be provided to help prove that the user signing in is the actual user.
If enabled, the users are required to set up multi-factor authentication when logging in initially. After the multi-factor authentication has been set up, they will enter an additional code during log-in.
How A User Sets Up Multi-Factor Authentication
- After signing in, you will be prompted to set up multi-factor authentication for increased security when signing in to the software. If you do not already have an Authenticator installed, download the appropriate application onto your Android/iOS device. When ready, click Recovery Codes.
- You will be prompted with several recovery codes to use if you are unable to use your Authenticator app. Save these codes in a safe location(s). Click Configure Authenticator.
- With the Authenticator app on your phone, scan the QR code or enter the key below the QR code. If successful, you will receive a verification code. Enter the verification code into the appropriate field and click Verify.
- If successful, you will receive the below message. Return to the login page to sign in.
- From this point forward when signing in to the software, you will be prompted to verify your identity by entering the code that has been generated on your Authenticator app after signing in with your username and password.