You can enable Multi-factor Authentication in the nShift Portal to add an extra layer of security. This requires providing more than one form of identification before accessing the nShift Portal resources.
Multi-factor Authentication is an optional setup and can be set manually by each user not using SSO (single sign-on).
Setting up Multi-factor Authentication on an nShift Portal account requires the use of an external TOTP protocol-based authenticator for generating the one-time valid codes.
Sections in this article:
- Activating Multi-factor Authentication
- Using Multi-factor Authenticator
- Using recovery code or email verification
- Disable nShift Multi-factor Authentication
Activating Multi-factor Authentication
You need a two-factor authentication application based on the TOTP protocol like Microsoft Authenticator, Google Authenticator, etc.
- Log in to nShift Portal and click on My account in the top right corner.
- Go to the General tab and activate the toggle next to MFA (Multi Factor Authentication).
- Enter your password and click Verify Credentials.
- Open your authenticator app and follow the instructions in step 2.
- Once you have successfully scanned the QR code or entered the verification code, you will get a confirmation message. Make sure to save the recovery codes. You will not be able to access them again.
Using Multi-factor Authentication
Once you have activated Multi-factor Authentication, you must have the authenticator app at hand when you sign into nShift Portal.
- Enter your username and password as usual a click Sign in.
- You will now see the following box. Enter the code from the Authenticator app and click Verify MFA code.
- You will now be logged into nShift Portal.
Using recovery code or email verification
- If you do not have the authenticator app at hand, you can click Use another MFA method.
- To use one of the recovery codes that was created during registration (step 5 above), choose Use recovery code.
- Enter one of the 6 recovery codes. Please be aware that you can only use each recovery code once.
- Click Verify MFA code. You will now be signed in.
- If you do not have a recovery code, you can choose Sign in with code from email. This will send you an email with a security code.
- Enter the code from the email and click Verify MFA code. The code is valid for 10 minutes.
- You will now be logged into nShift Portal.
Disable Multi-factor authentication
You can always disable Multi-factor authentication if you no longer need it. If you want to activate it again at a later time, you must go through the activation process again.
An Owner has access to disable MFA for admin and regular users on their account. This option can be used if a user is unable to access their authenticator app, recovery codes, or email.