TABLE OF CONTENTS
What is Multi-Factor Authentication?
Multi-Factor Authentication (MFA) is an authentication method that requires the user to provide two (or more) verification factors to gain access. MFA is a core component of a strong Identity and Access Management (IAM) policy.
Time-Based One-Time Passwords (TOTP) are temporary passcodes generated by an algorithm that uses the current time of day as one of its authentication factors. They are commonly used in multi-factor authentication tools.
How to use MFA
- Log into your account, and click the user icon in the top right corner of the screen
- Choose "Security" to navigate to the account security settings page
- Click "Enable 2FA" to generate a QR Code and an authentication token.
- Open a third-party authentication application of your choice on a mobile device to scan the QR Code that appears or to manually enter the provided code.
- If manually entering the code, be sure to set the algorithm to SHA512
Authy, Google Authenticator, and Duo Mobile are examples of authentication apps, that can be used to access systems that require multi-factor authentication.
- The authentication app will provide a 6-digit code which should be entered into the management site.
- Once you have completed this, press Verify.
The next time the user logs in, they will see the following screen, where they can enter the code from their authenticator app:
Removing MFA
To remove MFA,follow these steps:
- Log into your account, and click the user icon in the top right corner of the screen
- Choose "Security" to navigate to the account security settings page
- Click "Disable 2FA"
- The user will not see the Multi-Factor Authentication screens during their next log in