Multi-factor authentication

To enhance the security on your account and protect your data, we offer TOTP two-factor authentication.

TOTP (Time-based One-Time Password) is a type of two-factor authentication (2FA) method that generates a unique, time-sensitive code used to verify the users identity. It is based on a shared secret (a key) and the current time, meaning the password changes at regular intervals, usually every 30 seconds.

Security policy

Multi-factor authentication (MFA) is mandatory for admin users and optional for other user roles, unless enforced by the security policy setting.

Admins can enforce MFA for individual users by enabling the 'Mandate MFA' toggle on their profile. When mandated, users will be unable to navigate to others areas of the Dashboard until TOTP is setup.

Setting up TOTP

To enable TOTP on your account, access your user profile and enable the multi-factor authentication toggle. You should see a QR code displayed on the screen.

Here's how to enable TOTP using a QR code:

Step 1: Get a TOTP app

• Download and install a TOTP app on your smartphone. Popular options include:
  • Google Authenticator (Android/iOS)
  • Microsoft Authenticator (Android/iOS)
  • Twilio Authy (Android/iOS)

Step 2: Scan the QR code

• Open your TOTP app.
• Look for an option to add a new account or scan a QR code. This is usually a "+" symbol or a "Scan barcode" button.
• Point your phone's camera at the QR code on your computer screen. The app should automatically recognise and scan the code.
• If you're unable to scan the QR code, an alphanumeric code is also displayed and can be manually entered into your TOTP app.

Step 3: Confirm the setup

• Once the QR code is scanned, your TOTP app will display a 6-digit code.
• Enter this code in the 'Authenticator code' field.
• Enter a 'Device name' to identify the linked device.
• Some services may provide you with backup codes. Store these securely, as they can be used to recover access to your account if you lose your phone.

That's it! You have successfully enabled TOTP and you'll be asked to enter the password from the TOTP app each time you login.

Resetting TOTP

If for any reason you need turn off TOTP this can be done by disabling the multi-factor authentication toggle in your profile (if permitted by the security policy). Administrators can perform this task on behalf of users.

If you need to register a new device, you can remove the current device from your profile and you'll be promoted to setup TOTP on your next login.