Administration - Multi-Factor Authentication

Introduction

Avanan allows you to enable Multi-Factor Authentication (MFA) through Google Authenticator that implements a two-step authentication process to log in to the Avanan portal:

Step 1 - Log in with a supported login method (Google, Password, Microsoft, or SAML).

Step 2 - Enter a six-digit authentication code you receive from the Google Authenticator mobile app.

Benefits

  • Enhances security.
  • Does not require a mobile network or internet connection to generate the six-digit authentication code from the Google Authenticator app.

Prerequisites

Users must download and install the Google Authenticator app on their mobile phones. For more information, see https://support.google.com/accounts/answer/1066447.

Enforcing MFA for a User

The Admin must enforce the MFA for a user.

  1. Log in to the Avanan portal.
  2. Click Configuration > User Management.
  3. Click the  icon of the user you want to update and select Edit.
  4. Under Login Method, select the Require Multi-factor authentication checkbox.
    Note - You must select at least one of the login methods; Google, Password, Microsoft, or SAML.
  5. Click Update.
    A pop-up window appears and shows that the user is updated successfully.
  6. Click Ok.

Enabling MFA by a User

After the Admin enforces MFA, the user must enable the MFA.

  1. Log in to the Avanan portal.
  2. In the Dashboard, click the Settings icon and select MFA Setup.
    The MFA Setup screen appears that shows the QR code.
    activating-mfa-by-user-1
  3. Open the Google Authenticator app on your mobile phone and scan the QR code.
    The Avanan portal is added to the Google Authenticator app and shows the authentication code.
  4. In the Enter the Auth Code field, enter the authentication code.
  5. Click Enable MFA.
  6. Click Ok.
    The screen shows the authentication status.

Logging in with MFA

  1. Use one of the supported login methods (Google, Password, Microsoft, or SAML) to log in to the Avanan portal.
  2. Open the Google Authenticator app and copy the six-digit authentication code for the Avanan portal.
    Note - The six-digit authentication code is valid for only 30 seconds. After 30 seconds, a new code is generated.
  3. In the MFA Code field, enter the authentication code from the Google Authenticator app.
  4. Click Submit.