LogoLogo
Get Demo
  • 💫NEXT-GENERATION PRODUCT
    • Introduction
    • Getting Started
      • 1. Invite System Users
      • 2. Add Target Users
        • Add Users via CSV
        • Add users via SCIM
          • SCIM Setup in Azure AD
          • SCIM Setup in Okta
          • SCIM Setup in Onelogin
          • SCIM Setup in Jumpcloud
        • Add users via LDAP
        • Add Users via API
      • 3. Email Deliverability
        • Microsoft 365
          • M365: Direct Email Creation
          • M365: Whitelisting
        • Google Workspace
          • Google: Direct Email Creation
          • Google: Whitelisting
        • Exchange 2013 and 2016
      • 4. Track Opened Emails
      • 5. Allow Phishing URLs
        • Whitelist for Office 365
        • Whitelist for Google Workspace
        • Whitelist for Exchange 2013/2016
        • Whitelist in Security Solutions
      • 6. Setup Phishing Reporter
        • Step 1. Download Phishing Reporter
        • Step 2. Deploy Phishing Reporter
          • How to Deploy Add-In in Microsoft 365
          • How to Deploy Add-In in Exchange Admin Center
          • How to Deploy Add-In in Google Workspace
          • How to Deploy Add-In in Outlook
            • Troubleshooting Phishing Reporter Add-In on Outlook Desktop
      • 7. Incident Responder Setup
        • Step 1. Integrate Threat Intel Partners
        • Step 2. Mail Configurations
          • Microsoft 365
          • Google Workspace (Gsuite)
          • Exchange (EWS)
    • Platform
      • Dashboard
        • Dashboard Widgets
        • Incident Responder Widgets
        • Threat Sharing Widgets
        • Phishing Simulator Widgets
      • Threat Intelligence
      • Email Threat Simulator
        • Start Scan
        • View Scan Report
        • Create Trusted Account on Exchange
        • Start Scan on O365 Email Account
        • Start Scan on Google Workspace Email Account
      • Threat Sharing
        • Communities
        • Incidents
      • Phishing Simulator
        • Manage Phishing Scenarios
          • Phishing Scenarios
          • Email Templates
          • Landing Pages
        • Phishing Campaign Manager
        • Phishing Campaign Reports
        • Settings
          • DNS Services and Domains
          • Exclude IP Address
      • Callback Simulator
        • Manage Callback Scenarios
          • Callback Scenarios
          • Callback Email Templates
          • Callback Templates
        • Callback Campaign Manager
        • Callback Campaign Reports
        • Settings
          • Callback Phone Numbers
      • Vishing Simulator
        • Vishing Templates
        • Vishing Campaign Manager
        • Vishing Campaign Reports
      • Smishing Simulator
        • Manage Smishing Scenarios
          • Smishing Scenarios
          • Text Message Templates
          • Landing Page Templates
        • Smishing Campaign Manager
        • Smishing Campaign Reports
        • Settings
          • Manage DNS and Domains
          • Exclude IP Addresses
      • Quishing Simulator
        • Manage Quishing Scenarios
          • Quishing Scenarios
          • Quishing Templates
          • Quishing Landing Page Templates
        • Quishing Campaign Manager
        • Quishing Campaign Reports
        • Settings
          • DNS and Domains
          • Excluding IP Address
      • Awareness Educator
        • Training Library
        • Enrollments
        • Certificates
        • Training Reports
        • Training Completion Queries
      • Incident Responder
        • Incident Responder Dashboard
        • Investigations
        • Integrations
        • Playbook
        • Mail Configurations
          • Microsoft 365
          • Exchange
          • Google Workspace
        • Cross Company Integration
      • Phishing Reporter
        • Phishing Reporter Customization
        • Phishing Reporter Deployment
          • How to Deploy the Add-in in Microsoft 365
          • Phishing Reporter Page View Failure Due to Deprecated Exchange Online Tokens
          • Microsoft Ribbon Phishing Reporter
          • How to Deploy the Add-in in Exchange Admin Center
          • How to Deploy the Add-in in Google Workspace
          • Phishing Reporter Announcement Email Template
        • Diagnostic Tool
        • Integrating Microsoft Phishing Reporting Button with Keepnet
        • Troubleshooting Phishing Reporter on Outlook Desktop
      • Reports
        • Advanced Reports
        • Executive Reports
        • Scheduled Reports
        • Gamification Report
      • Company
        • Target Users
        • Companies
          • Company Groups
        • Company Settings
          • Privacy
            • Account Privacy
            • Data Privacy
          • AI Ally Settings
          • SMTP Settings
          • Direct Email Creation
            • Direct Email Creation for Google Workspace
            • Direct Email Creation for Microsoft 365
          • Notification Templates
          • Google User Provisioning
          • REST API
          • White Labeling
          • Proxy Settings
          • SAML Settings
            • How to Configure SAML on ADFS
            • How to Configure SAML on Google Workspace
            • How to Configure SAML on Azure AD
            • How to Configure SAML on CyberArk
            • How to Configure SAML on Okta
          • SCIM Settings
            • Getting Started with SCIM
            • Azure AD SCIM Integration
            • Okta SCIM Integration
            • Onelogin SCIM Integration
            • Jumpcloud SCIM Integration
          • SIEM Integrations
            • Splunk Integration
            • Syslog Integration
          • LDAP
          • Allowed Domains
        • System Users
          • People
          • Roles
        • Audit Log
        • Job Log
      • Free Phishing Email Analysis Service
    • Miscellaneous
      • Whitelisting
        • How to Whitelist an IP Address in Office 365
        • How to Whitelist an IP Address in Exchange 2013 and 2016
        • How to Whitelist an IP Address in Google Workspace
        • How to Whitelist in Mimecast
        • Whitelisting in Other Security Solutions
        • Whitelisting the Pictures on Microsoft Outlook Apps
        • Keepnet Tools Whitelisting Guidelines
        • Understanding Email Delivery Errors
        • Tracking Email Opens in Phishing Simulations
      • User Profile
      • Multi-Factor Authentication (MFA) Settings
      • On-Premise Requirement Checker
      • Platform Requirements
        • Portal UI Requirements
        • Phishing Reporter Requirements
        • Diagnostic Tool Requirements
      • Maintenance Tool
      • Understanding the Preferred Language Setting
  • 📚RESOURCES
    • Platform Security
    • Volume & Performance
    • Customer Help Desk
    • Product Update/Maintenance
    • Research Methodology
    • Release Notes
      • 2025
      • 2024
      • 2023
      • 2022
      • 2021
      • 2020
  • ⚖️Legal Hub
    • For Customers
      • Customer Terms of Service
      • Product Specific Terms
      • Jurisdiction Specific Terms
      • Data Processing Agreement
      • Regional Data Hosting Policy
      • Product and Services Catalog
      • Acceptable Use Policy
      • Keepnet Security Program
      • Microsoft CoPilot Usage Policy
    • For Everyone
      • Website
        • Terms of Use
        • Privacy Policy
        • Cookie Policy
      • Free Phishing Email Analysis
        • Terms of Service
        • Privacy Policy
      • Transparency Report
Powered by GitBook

Copyright © Keepnet Labs LTD. All rights reserved.

On this page
  • What is Multi-Factor Authentication
  • Supported Authentication Applications for MFA
  • How to activate Multi-Factor Authentication?
  • Video Tutorial
  • FAQ
  • Q: I can’t access my phone. I'm unable to use the MFA app. What can I do to regain access to the platform?
  • Q: My phone number has changed, and the SMS code for MFA cannot be delivered to reset the configuration. What can I do?
  • Q: What can I do if the MFA application I'm using isn't supported by the system?
  • Q: I am unable to use the MFA application. I have requested an SMS code for MFA and have not received it yet. What options do I have?
  • Q: I want to disable MFA permanently. Is it possible?
  • Q: I log into the platform using SSO via SAML; do I still need to configure MFA?
  • Q: How long does platfrom remember me if I click the "Don't ask again on this computer" option?

Was this helpful?

Export as PDF
  1. NEXT-GENERATION PRODUCT
  2. Miscellaneous

Multi-Factor Authentication (MFA) Settings

This article covers how system users can enable Multi-Factor Authentication to log in to the platform more securely.

What is Multi-Factor Authentication

Multi-factor Authentication (MFA) is an authentication method that requires the user to provide two or more verification factors to gain access to the platform. Even if the user account has been compromised, logins performed without validating the Multi-Factor Authentication code will be rejected, and the account would be inaccessible.

Supported Authentication Applications for MFA

When logging onto the platform, Multi-Factor Authentication is required. The system user must configure MFA within 15 days of the user account being created. It is possible to log in without utilizing MFA at that date range.

For the first 15 days after your account is activated, you can select the Continue without MFA option to proceed without activating Multi-Factor Authentication.

Recommended list of applications including, but not limited to:

  • Microsoft Authenticator

  • Google Authenticator

  • Authy

  • Duo Mobile

  • LastPass Authenticator

  • Symantec VIP Access

How to activate Multi-Factor Authentication?

If you see a reminder for MFA when you log in to the platform, follow the steps below to activate it.

  1. After login into the platform, go to the left menu and click on the company name or company logo above the menu.

  2. Click Security on the pop-up menu.

  3. Click Enable next to the Multi-Factor Authentication heading.

  4. Follow the instructions in the Setup Multi-factor Authentication window.

  5. Scan the QR code with the related application on your mobile device.

  6. Enter the MFA code given on the application and click Confirm to complete the process.

If you are unable to use the Multi-Factor Authentication application for a reason, the platform can send you a code through SMS so that you can regain your account.

To resync your MFA settings, follow the instructions below.

  1. After login into the platform, go to the left menu and click on the company name or company logo above the menu.

  2. Click Security on the pop-up menu.

  3. Click Resycnc next to the Multi-Factor Authentication heading.

  4. Follow the instructions in the Setup Multi-factor Authentication window.

  5. Scan the QR code with the related application on your mobile device.

  6. Enter the MFA code given on the application and click Confirm to complete the process.

For companies using SSO via SAML, MFA is disabled by default.

Video Tutorial

This tutorial covers how system users can enable Multi-Factor Authentication to log in to the platform more securely.

FAQ

Q: I can’t access my phone. I'm unable to use the MFA app. What can I do to regain access to the platform?

A: You can receive the MFA code via SMS alternatively, and after logging into the platform, you can reconfigure your MFA settings.

Q: My phone number has changed, and the SMS code for MFA cannot be delivered to reset the configuration. What can I do?

A: If there are other system users in the same company, you can request them to update your mobile number on your profile. If you are the only one system user, please request assistance from the support team.

Q: What can I do if the MFA application I'm using isn't supported by the system?

A: You can contact the support team to request an integration for the MFA application. The support team will review the inquiry and response soon.

Q: I am unable to use the MFA application. I have requested an SMS code for MFA and have not received it yet. What options do I have?

A: If there are other system users in the same company, you can request them to double check your mobile number settings. If you are the only system user, please request assistance from the support team.

Q: I want to disable MFA permanently. Is it possible?

A: MFA is mandatory by default, and it cannot be disabled. For companies using SSO via SAML, it is disabled by default. In that case, please refer to the link.

Q: I log into the platform using SSO via SAML; do I still need to configure MFA?

A: No, the platform will disable MFA by default in that case.

Q: How long does platfrom remember me if I click the "Don't ask again on this computer" option?

A: If you select "Don't ask again on this computer" while login to the platform, the platform will remember your browser and will not ask you to enter MFA code each time you login until 14 days.

PreviousUser ProfileNextOn-Premise Requirement Checker

Last updated 1 year ago

Was this helpful?

💫