Multi-Factor Authentication (MFA) and Two-Factor Authentication (2FA)

MFA and 2FA are electronic authentication methods that grant users access to a website or application only after successfully presenting two or more pieces of evidence to an authentication mechanism.

Customers can utilise the native MFA capabilities of their Identity and User Management platforms, such as Azure Active Directory or Okta.

For email-based tenants in MyCompliance, multi-factor authentication via an authenticator app is also available.

Setting up MetaCompliance MFA

Admins can enable MFA through a drop-down setting under Company Edit.

Available options include:

1. MFA Disabled
2. MFA for privileged users only (e.g. admins, non-end users)
3. MFA for all users
4.  

Session Timeout will automatically set to 8 hours, meaning users will be logged out after the stated period. This can be adjusted if required.

User Experience

Once MFA is enabled, users will be prompted to register their authenticator app during their next login.

Future logins will include an easy-to-follow MFA step, ensuring a secure and streamlined experience.