End User Configuration Guide
This documentation outlines the process for configuring Multi-Factor Authentication (MFA) for the two-step verification process.
Multifactor Settings
MFA stands for Multi-Factor Authentication, which is a security method used to enhance the protection of online accounts and systems.
It involves requiring users to provide multiple forms of verification or authentication before they can access their accounts or sensitive information.
The primary goal of MFA is to add an extra layer of security beyond just using a traditional username and password combination.
Enable the authentication methods that you would like to offer your customers as part of Multi-Factor Authentication on your portal.
The following multifactor options are available in our portal, based on the business needs we can enable the multifactor options on this settings page:
Accessing the MFA Settings Tab
In the Admin Console, click the Settings->MFA Settings tab on the left.
EMAIL: Authentication through email verification.
SMS: Authentication through a one-time code sent via SMS.
TOTP (Time-based One-Time Password): Authentication using temporary passwords that change periodically.
OFFLINE_OTP(Backup Code): Authentication using a one-time password generated offline, often through hardware tokens.
FIDO: Fast Identity Online, a standard for strong authentication using public key cryptography.
FACE: Authentication using facial recognition technology.
PATTERN: Authentication using a pre-defined geometric pattern drawn on a mobile phone.
SMART_PUSH: Authentication using a mobile phone, often through push notifications.
VOICE: Authentication based on voice recognition.
These methods provide a range of options for users to prove their identity, adding an extra layer of security to the authentication process.
If you enable any of the multifactor options, an alert window will open to confirm your selection.
MFA Configuration Overview
MFA configuration is a pivotal aspect of ensuring heightened security in the two-step verification process.
This setting empowers users to add an additional layer of authentication, enhancing the safeguarding of their accounts.
Email MFA Configuration Flow
Step 1: Email OTP Configuration
Email Address: Begin by providing your email address in the designated field.
Generate OTP: Click the Generate OTP button. This action triggers the system to send a unique OTP to your provided email address.
Step 2: OTP Verification
OTP Verification Page: Access the OTP verification page. Here, you will find an input box where you can enter the OTP received in your email.
Enter OTP: Enter the OTP you received into the input box. This step ensures that the OTP matches the one generated by the system.
Step 3: Confirmation and Name Entry
Confirmation of OTP Verification: Upon successful OTP verification, a confirmation message will be displayed: You have successfully configured your Email.
Name Entry: An input box will be presented, inviting you to enter your name for identification purposes.
Save Credentials: After entering your name, click the 'Save' button to securely store your updated credentials.
By following these steps, you will successfully configure the email-based OTP method for Multi-Factor Authentication, enhancing the security of your account.
SMS MFA Configuration Flow
This section outlines the steps to configure Multi-Factor Authentication (MFA) using the SMS method.
Following this flow ensures an additional layer of security during the authentication process.
Step 1: Mobile Number Entry
Mobile Number: Start by providing your mobile number in the designated field. This number will be used to send the verification OTP.
Step 2: Verification OTP
OTP Generation: After submitting your mobile number, a unique OTP (One-Time Password) is generated and sent to the provided mobile number.
Receive and Enter OTP: Check your mobile device for the received OTP. Enter this OTP into the provided input field on the verification page.
Step 3: Confirmation
Successful Verification: Upon entering the correct OTP, a confirmation message will appear, indicating successful verification.
Thank You: You will receive a "Thank You" message confirming the completion of the SMS MFA configuration process.
Friendly Name: Additionally, you will be prompted to enter a friendly name for your device, enhancing account identification.
By following these steps, you will successfully configure the SMS method for Multi-Factor Authentication, strengthening the security of your account
IVR MFA Configuration Flow
This section provides guidance on configuring Multi-Factor Authentication (MFA) through the Interactive Voice Response (IVR) method.
This approach adds an extra layer of security to the authentication process.
Step 1: Mobile Number Entry
Mobile Number: Begin by inputting your mobile number using the keypad on your phone. This number will be used to send the verification details.
Step 2: Call Verification
Incoming Call: Shortly after entering your mobile number, you will receive an incoming call to the number provided.
Follow Instructions: Answer the call and follow the voice instructions. The system will provide a verification code that you need to remember.
Step 3: Verification
Enter Verification Code: Once the call is completed, access the verification page and enter the verification code you received during the call.
Step 4: Confirmation and Friendly Name
Successful Verification: After entering the correct verification code, a confirmation message will appear, indicating successful verification.
Thank You: You will receive a "Thank You" message, confirming the completion of the IVR MFA configuration process.
Friendly Name: Additionally, you will be prompted to enter a friendly name for your device, enhancing account identification.
By following these steps, you will successfully configure the IVR method for Multi-Factor Authentication, strengthening the security of your account.
TOTP MFA Configuration Flow
This section guides you through the process of configuring Multi-Factor Authentication (MFA) using the Time-Based One-Time Password (TOTP) method.
This method enhances the security of your authentication process.
Step 1: Authenticator App Setup
Install Authenticator App: Begin by installing an authenticator app on your Android or iOS device. There are several apps available; you can choose from options such as Google Authenticator, Microsoft Authenticator, or Auth.
Add Account: After installing the app, open it and navigate to the option to "Add Account."
Scan QR-Code: Use your device's camera to scan the provided QR-code. This code contains the necessary information for setting up TOTP.
Step 2: Code Verification
Enter Six-Digit Code: In the authenticator app, you will see a six-digit code associated with the added account. This code changes every 30 seconds. Enter the current code into the verification input field on the screen.
Step 3: Confirmation and Name Entry
Configuration Successful: Upon entering the correct six-digit code, a confirmation message will appear: "You have successfully configured your TOTP."
Enter a Name for TOTP: Additionally, you will be prompted to provide a name for this TOTP configuration. This helps in identifying the account for which you've set up TOTP.
By following these steps, you will successfully configure the TOTP method for Multi-Factor Authentication, enhancing the security of your account.
Last updated