# Setting up Multi-Factor Authentication (MFA) ### Prerequisites * A smartphone with an authenticator app installed * Access to your account settings on CISO Assistant ### Enable MFA 1. Sign in to your account and navigate to 'My profile'

1. Select the 'Settings' button 2. Look for the Security section and click 'Enable 2FA' 3. Set up your authenticator app: * Open your authenticator app on your smartphone * Scan the QR code displayed on your screen * Alternatively, you can manually enter the provided secret code into your authenticator app

4. Enter the 6-digit verification code shown in your authenticator app 5. Click 'Enable 2FA' to complete the setup ### Important: Save Your Recovery Codes After enabling MFA, you'll receive a set of recovery codes. These codes are crucial for regaining access to your account if you: * Lose your phone * Uninstall your authenticator app * Cannot access your authenticator app for any reason {% hint style="warning" %} **Security Warning**: * Store your recovery codes in a secure location, separate from your password * Each recovery code can only be used once * Never share your recovery codes with anyone * Consider storing a copy both digitally (in a password manager) and physically (printed in a secure location) {% endhint %}

### Next Steps * Test your MFA setup by logging out and back in * Reach out for support if you encounter any issues during setup ## Enforce MFA for all users Starting v3.13.0 you can now enforce MFA for all users by enabling this flag. Users will see a persistent redirct to MFA configuration page until it is done. The feature doesn't interfere with SSO as long as the user doesn't have both a local account andd an SSO one.