Setting up Multi-Factor Authentication (MFA)

Multi-factor authentication adds an extra layer of security to your account by requiring both your password and a time-based code when you log in.

Prerequisites

• A smartphone with an authenticator app installed

• Access to your account settings on CISO Assistant

Enable MFA

1. Sign in to your account and navigate to 'My profile'

1. Select the 'Settings' button

2. Look for the Security section and click 'Enable 2FA'

3. Set up your authenticator app:

   • Open your authenticator app on your smartphone

   • Scan the QR code displayed on your screen

   • Alternatively, you can manually enter the provided secret code into your authenticator app

   
4. Enter the 6-digit verification code shown in your authenticator app

5. Click 'Enable 2FA' to complete the setup

Important: Save Your Recovery Codes

After enabling MFA, you'll receive a set of recovery codes. These codes are crucial for regaining access to your account if you:

• Lose your phone

• Uninstall your authenticator app

• Cannot access your authenticator app for any reason

Security Warning:

• Store your recovery codes in a secure location, separate from your password

• Each recovery code can only be used once

• Never share your recovery codes with anyone

• Consider storing a copy both digitally (in a password manager) and physically (printed in a secure location)

Next Steps

• Test your MFA setup by logging out and back in

• Reach out for support if you encounter any issues during setup

Enforce MFA for all users

Starting v3.13.0 you can now enforce MFA for all users by enabling this flag. Users will see a persistent redirct to MFA configuration page until it is done. The feature doesn't interfere with SSO as long as the user doesn't have both a local account andd an SSO one.