What is Multi-Factor Authentication (MFA)?
MFA stands for "Multi-Factor Authentication." It is a security process in which a user is required to provide two or more different authentication factors to verify their identity when accessing a system, application, or online account. MFA is also sometimes referred to as Two-Factor Authentication (2FA).
MFA enhances security by adding an extra layer of protection. Even if someone knows your password (the first factor), they would still need access to your second factor (e.g., your smartphone or a code sent to your email address) to successfully log in, making it more difficult for unauthorized individuals to gain access to your accounts.
Why is MFA being made mandatory now?
We are taking a proactive approach to safeguard IoT ecosystem for our clients and use security best practices to enhanced accounts protection, prevent unauthorized access, protect sensitive data and meet regulatory security compliance
When is this happening?
We will begin enforcing MFA for small groups of customers in November 2023. By January 2024, mandatory email-based MFA will be required for all our clients.
Do I need to take any action now?
You don't need to take any immediate action. In the coming months, MFA will become mandatory for all users. Once it becomes mandatory for your organization, you will receive an email with a code when you log in.
How can we enable or disable MFA for a specific user?
Please visit our Documentation page and follow the steps.
I am using my emnify credentials in OpenVPN or for API authentication. What do i need to do?
MFA will be enabled for portal logins only. Access via API / OpenVPN will not experience any change.
Which MFA methods are supported by emnify?
Emnify supports the following methods:
- Email-Based MFA (Default method): An email with a one-time code or a link to authenticate the user is sent to the user's registered email address.
- Time-Based One-Time Password (TOTP) MFA: Users generate one-time codes using an authenticator app (e.g., Google Authenticator, Authy) that refreshes the code every 30 seconds. The user enters the current code from the app during the login process.