Multi-factor Authentication (MFA) is a second layer of security that reduces the risk of unwanted access to your account. It requires a two-step identification process every time you login to your account.
If your firm has MFA enabled, you must set up your MFA in order to access your account.
Once MFA is configured, you will use your email address and password to log into your portal and then verify your identity by either entering a temporary code from the Google Authenticator app which you install on your mobile device or answering a set of security questions that have been configured by you.
How to set up MFA on your mobile:
Download the Google Authenticator app. This can be found within the Apple App Store & Google Play store.
- Navigate to your portal mobile app and enter your email and password. Click 'Log in'.
- You will now be asked to set up Multi-Factor Authentication.
Scan the QR Code or tap the link to copy the configuration key as highlighted below. Once done, open the Google Authenticator app.
Note: If you have scanned the QR Code, go straight to step 6.
If you have copied the authentication key in step 3, select the '+' button and select 'Enter a setup key'.
- You will now be asked to enter Account details.
Account: Enter a name for your account e.g. 'Joe Bloggs Client Portal'
Key: Paste in the configuration key that was copied in step 3.
Once the above information has been added, click 'Add'.
- A temporary authentication code will be generated. Click on the code and it will automatically copy to your clipboard.
- Back in the portal mobile app, paste the temporary MFA authentication code into the field provided and click 'Verify'.
You will now be asked to set up security questions and a recovery email.
Select your security questions from the drop down box and enter your answers in the spaces provided. Ensure you enter in a recovery email, then click ‘Finish’.
- A success message will appear. MFA is now set up and you can now access your portal.
- Now that MFA is enabled, each time you log in to your portal you will be asked to provide a second form of identity verification.
You can verify your identity by providing a temporary code from the Google Authenticator app, or by answering the security questions configured in step 8.
By ticking 'Remember this device for 30 days' upon entering your authentication code or answering security questions, you will not be required to provide the second layer of identity for 30 days.
What is Multi-Factor Authentication (MFA)?