You are here
Security Guide
Two factor authentication
Since version 11.3a, MCS has supported two factor authentication (2FA) via email.
2FA is an extra layer of security used to make sure that people trying to gain access to an online account are who they say they are.
Email Settings
The option to enable 2FA is disabled until email settings have been specified. Simply because an email can't be sent unless MCS has a valid email server to use.
The email settings are found at the bottom of the General Configuration page. This page is accessible using the link in the administration panel on the left of the MCS main menu.
Email Settings
Be sure to test the email settings you have entered and then submit the changes.
Enable 2FA
At the top of the Security Settings page there is the option to enable 2FA. When email settings have been specified the checkbox is activated.
The email settings are found at the bottom of the General Configuration page. This page is accessible using the link in the administration panel on the left of the MCS main menu.
Two factor authentication check box
Once checked scroll down to the bottom of the page to save the changes.
2FA Behavior
When a user next logs on they will be prompted to authenticate. An email will be sent to the email address set for the user who has logged in. If that user does not have an email specified then they will be prompted to add one before they are able to complete the login.
Workstations are remembered for 30 days. 2FA will be required again once this time period elapses. Likewise, if a user logs in from another computer they will also be prompted to authenticate.