Overview
Multi-Factor Authentication (MFA) is a multi-step login process that requires users to verify their identity using more than one method. In addition to a password, users may be required to provide a time-based code, respond to a security prompt, or use an authenticator application.
In eZintegrations, Two-Factor Authentication (2FA) is implemented as a form of MFA. It strengthens account security by combining something you know, such as a username and password, with something you have, such as a smartphone-based authenticator.
When to Use
Use Multi-Factor Authentication when enhanced account protection is required to prevent unauthorized access.
- Protecting accounts from compromised passwords
- Preventing phishing and social engineering attacks
- Securing enterprise and organizational accounts
- Meeting security compliance requirements
How It Works
Multi-Factor Authentication in eZintegrations requires users to verify their identity using two independent factors during login.
After entering a valid username and password, users must provide a time-based one-time passcode generated by an authenticator application. Access is granted only after successful verification.
How to Configure Multi-Factor Authentication
Follow the steps below to enable and configure Multi-Factor Authentication in eZintegrations.
::contentReference[oaicite:0]{index=0}
Step-by-Step Configuration
- Log in to eZintegration.
- Click Settings in the right-side panel and navigate to Multi-Factor Authentication.
- Toggle the Enable Multi Factor Authentication button.
- After enabling the toggle, the 2FA configuration information is displayed.
- Download and install the Google Authenticator application on your smartphone.
- Complete the initial setup of the authenticator app.
- Click Add a Code or the + icon and select Scan the QR code.
- Scan the QR code displayed in the 2FA information screen.
- Enter the generated time-based code and click Verify.
Verification and Activation
After successful verification, a popup displays the message “MFA enabled”. The Multi-Factor Authentication toggle is activated.
Click the Update button to save the changes. A confirmation message “Successfully Updated profile” is displayed.
If you choose to disable MFA, toggle the setting off. A popup displays “MFA disabled”. Click Update to confirm the change.
Login with Multi-Factor Authentication
Once MFA is enabled, additional verification is required during every login session.
::contentReference[oaicite:1]{index=1}
Authentication Process
- Log out of the application.
- Navigate to the login page and enter your username and password.
- A popup prompts for the Multi-Factor Authentication One-Time Passcode.
- Open the authenticator application and retrieve the current code.
- Enter the code and click Sign to complete login.
Security Benefits
Two-Factor Authentication enhances account protection by adding an additional verification layer beyond passwords.
- Protects against stolen or weak credentials
- Reduces the risk of brute-force attacks
- Prevents unauthorized access from compromised accounts
- Improves overall platform security posture
Troubleshooting
- Ensure the authenticator app time is synchronized correctly.
- Verify that the QR code was scanned properly during setup.
- Re-scan the QR code if generated codes are rejected.
- Check that the Update button was clicked after enabling MFA.
- Confirm that the correct account is selected in the authenticator app.
Frequently Asked Questions
What is Multi-Factor Authentication in eZintegrations?
Multi-Factor Authentication in eZintegrations uses Two-Factor Authentication to verify user identity through a password and a time-based authenticator code.
Is MFA mandatory for all users?
MFA is optional and can be enabled or disabled by users through the profile settings.
Which authenticator app is supported?
Google Authenticator is supported for generating time-based verification codes.
How often is the authentication code refreshed?
The authenticator application generates a new verification code every 30 seconds.
What happens if MFA is disabled?
When MFA is disabled, users can log in using only their username and password.
Notes
- Always keep your authenticator device secure.
- Do not share verification codes with others.
- Review security settings periodically.
- Reconfigure MFA if you change or reset your mobile device.
