MFA works by requiring additional verification information (factors). One of the most common MFA factors that users encounter are one time passwords (OTP). OTP's are those 4-8 digit codes that you often receive via email, SMS or some sort of mobile app. With OTP's a new code is generated periodically or each time an authentication request is submitted.
StoreFeeder works this way in conjunction with your chosen OTP Application (example, Google Authenticator, Authy, Microsoft Authenticator).
You can choose to enable this feature on your account on the following page 'Settings > Company > Multi Factor Authentication'
On here you have a toggle that will enable users to set up MFA as detailed below, this will not be enforced unless you enter a date in the 'Mandatory From' box. If a date is entered in that box then ALL users whill be required to set up MFA in order to log in unless they have been marked as exempt by an admin as shown below.
At the bottom of the screen you are able to see a list of users that havent set up MFA on your account.
When Multi-Factor Authentication is set active on your account, the first time a user logs in, they will encounter this pop up box:
They should open the OTP Application and scan the QR code on the screen. This is unique to their login.
The OTP Application will then provide the current 6 digit code which the user should enter the code into the 'Verification Code' entry box and submitted. This will then provide usual access to StoreFeeder for the user.
The user can also tick the 'Remember this device for 30 days' button to allow continued access for that user from that device for 30 days.
Adding a device name is optional, but allows you to see the permissible devices from the user profile in the system.
Once the device and user are verified and set up, the next time the user is asked to do Multi-Factor Authentication, the following box will appear. The user should then simply open OTP Application and enter the current code as before.
Admin Users can control and view MFA information by going to 'Settings > Company > Users' and selecting the appropriate user.
Here you have the ability to revoke the MFA by resetting the access and forcing the user to repeat the process.
Comments
0 comments
Please sign in to leave a comment.