Multi-factor authentication (MFA) adds an extra layer of security on top of the standard username and password authentication for logins to Devo domains.
Enable MFA for a domain
- Go to the Authentication tab in Preferences → Domain Preferences.
- In the Password tab, select Active.
- Then, optionally, select Allow users to skip MFA Configuration if you want to make MFA optional for your domain users temporarily. This can be useful to facilitate the transition to the use of MFA during logins. Once a domain user has set up MFA, they will no longer be able to skip MFA when they login to the domain.
- Click Update. From this point, when domain users log in, they will be prompted to set up MFA for their user.
Log in using MFA
With MFA enabled, users will be prompted to set up and verify their user for MFA authentication. To do so, they will need to download a token-generating app to their mobile phones.
This is the process for setting up MFA for the first time.
- Log into Devo as usual with your username and password. The Multi-factor authentication process window opens. At this point, you should download one of the recommended apps on your mobile phone, such as Google Authenticator. Then, click Start Process. This sends an email containing a verification link to your inbox.
- Go to your inbox, open the verification email, and click the link inside. This opens a page displaying a QR code.
- Open the app you downloaded and use it to scan the QR code, then click Continue. A six-digit verification code will appear on your phone.
- Enter the verification code. Select the Remember this device during 30 days if you want to skip the QR code validation step when logging in over the next 30 days. Select Validate and Access to finish the MFA login process.
Once MFA is set up on your device, in addition to logging in with your username and password, you will also be prompted to enter a verification code generated by the authentication app on your phone during the login process.