Administration - Multi-Factor Authentication
Introduction
Avanan allows you to enable Multi-Factor Authentication (MFA) through Google Authenticator that implements a two-step authentication process to log in to the Avanan portal:
Step 1 - Log in with a supported login method (Google, Password, Microsoft, or SAML).
Step 2 - Enter a six-digit authentication code you receive from the Google Authenticator mobile app.
Benefits
- Enhances security.
- Does not require a mobile network or internet connection to generate the six-digit authentication code from the Google Authenticator app.
Prerequisites
Users must download and install the Google Authenticator app on their mobile phones. For more information, see https://support.google.com/accounts/answer/1066447.
Enforcing MFA for a User
The Admin must enforce the MFA for a user.
- Log in to the Avanan portal.
- Click Configuration > User Management.
- Click the
icon of the user you want to update and select Edit.
- Under Login Method, select the Require Multi-factor authentication checkbox.
Note - You must select at least one of the login methods; Google, Password, Microsoft, or SAML. - Click Update.
A pop-up window appears and shows that the user is updated successfully. - Click Ok.
Enabling MFA by a User
After the Admin enforces MFA, the user must enable the MFA.
- Log in to the Avanan portal.
- In the Dashboard, click the Settings icon and select MFA Setup.
The MFA Setup screen appears that shows the QR code. - Open the Google Authenticator app on your mobile phone and scan the QR code.
The Avanan portal is added to the Google Authenticator app and shows the authentication code. - In the Enter the Auth Code field, enter the authentication code.
- Click Enable MFA.
- Click Ok.
The screen shows the authentication status.
Logging in with MFA
- Use one of the supported login methods (Google, Password, Microsoft, or SAML) to log in to the Avanan portal.
- Open the Google Authenticator app and copy the six-digit authentication code for the Avanan portal.
Note - The six-digit authentication code is valid for only 30 seconds. After 30 seconds, a new code is generated. - In the MFA Code field, enter the authentication code from the Google Authenticator app.
- Click Submit.