MFA (Multi-Factor Authentication)
Note: If there are questions on this feature or what authentication applications to use, your IT Department should be the first touchpoint. Bonfire Support will not recommend what third-party tools to use. You can use any authentication tool according to your choice.
What is it?
Multi-Factor Authentication is an extra layer of security designed to make sure that you're the only one who can access your account even if someone else knows your password. When you sign in for the first time on a new device or the web, you need both your password and the verification code that's automatically displayed on your trusted devices.
To add this feature to your account, navigate to Account Settings > Password and update to access MFA Settings:
- For Agency users, consult with your IT team on the supported authentication applications and check if you can install them on your official/personal devices
- For Vendors, consult with your IT team on the supported authentication applications and check if you can install them on your official/personal devices. If you don't have an IT team, please do your research on the tools you can use. Bonfire doesn't recommend any specific applications as our software should generally support all the major applications like Google Authenticator, Microsoft Authenticator, Authy, etc.
- Access to a device (either personal or official depending on your organization's policy)
- Ability to scan QR code on the device, or input set-up key
Scan the QR Code or type in the setup key on the authentication app of your choice
Follow the steps in your authenticator application (if any)
Access Authenticator Application
Enter the 6-digit code from your authentication application to the Bonfire settings page, where you see Please enter the code from the Authenticator app
Recovery Codes
After you complete the setup the MFA screen will look like this:
-
If you don't want to proceed with MFA, you can disable it using the blue button on the screen
If you wish to use MFA, the immediate thing to do here is to Generate Recovery Codes. To do that, click on the button Generate Recovery Codes
Recovery codes are a set of unique codes. These allow you to regain account access if you cannot access the device or account used for MFA enrollment
Please save them in a safe place, and remember, each code may only be used once
-
-
Click on the option Enable Recovery Codes. You will get a success toast on the screen
-
You’ll notice that after enabling recovery codes, you cant disable two-factor authentication
Login using two-factor authentication. You will notice this additional screen the next time you log in
If for some reason, you cant access the authentication app, you can use one of the recovery codes
Thats it. You have now successfully enabled MFA.
Comments
0 comments
Article is closed for comments.