Overview
Multi-factor authentication (MFA) is a method of ensuring security by granting account access using multiple authentication methods. For instance, instead of simply entering a password to log in, MFA might require a verification code sent through SMS or a third-party app. Every user can enable or disable MFA in their Cordial account unless otherwise dictated by your company's security policies.
MFA will be enabled for all new users by default. If MFA is disabled for any of your users and needs to be enabled, the individual users must do so through their account settings as outlined below. Users with sufficient access permissions can view the MFA status of all other users from the Users page.
Set up multi-factor authentication
1. Log in to your Cordial account and navigate to Settings > Profile Settings.
2. Open your MFA app and get ready to scan the QR code provided by Cordial.
- If you don't already have an MFA app, we recommend that you download the Google Authenticator app from the Google Play Store or the Apple App Store. In the Google Authenticator app, click the + icon on the bottom right and select whether you want to use a QR code or setup key to authenticate.
3. Under Multi-factor Authentication in Cordial, click the Enable button. Cordial will generate a one-time QR code and MFA code.
Only click Enable once.
4. Use your MFA app to scan the QR code provided by Cordial, or enter the Cordial MFA code manually in your app. Your app will generate a time sensitive code.
5. In Cordial, enter the time sensitive code from your app in the Enter code from device field and click Confirm.
- The image below shows a time sensitive code generated by an MFA app that is then entered in Cordial.
Be sure to click Confirm, not Enable, after you enter the code generated by your authenticator app. If you try to enter the code from your app into Cordial after clicking Enable a second time, it won't work. If you do click Enable a second time, you'll need to start over and scan the refreshed Cordial QR code in your authenticator app. For Okta Verify users: click the > next to the app-generated MFA code, select Delete Account, and rescan the Cordial QR code.
6. When logging back into Cordial once you have MFA enabled in your account, open your MFA app and locate the freshly-generated authentication code. After entering your password in Cordial, enter the active authentication code from your MFA app and click Validate Code.
Make sure to enter the code before it times out.
Multi-factor authentication status
If you're an admin user, you can view the MFA status of all other users by navigating to Settings > Users.
Reset multi-factor authentication
To reset MFA for a user, please submit a ticket. Be sure to specify which username (i.e., email address) needs its MFA reset.
Comments
0 comments
Please sign in to leave a comment.