Multi-factor authentication

Multi-factor authentication (MFA) - sometimes referred to as two-factor authentication (2FA) - is a multi-stage verification method which adds additional layers of security to your account.

When enabled for your Award Force account, it adds a second verification method using an authenticator app or SMS. This means that if someone wants to hack into your account they not only need to steal your password, they'll also need to steal your mobile device!

We recommend enabling MFA for your own account and encouraging your users to do the same. Setting it up is very easy.

    1. Click on your name at the top right and choose Profile from the menu
    2. Go to the Security tab
    3. Switch on the Multi-factor authentication toggle

      mfa.png
    4. You will need to install a time-based authentication app like Google or Microsoft Authenticator on your mobile device to complete the set up. Once enabled you'll have the option to switch over to SMS authentication, if you prefer. For SMS authentication you'll also need to add a mobile number to your account by clicking your name at the top right and choosing Profile. Then add and save your mobile number.
Important: Once you've enabled MFA make sure you print out the recovery codes and put them somewhere safe. This is very important because if you lose your mobile device or it gets stolen you can use your recovery codes to access your account.

You can require MFA for specific roles. This will make it mandatory for users with that role. To do this go to Settings > Roles and check the option next to Require multi-factor authentication.

mfa.png