Overview
Multi-factor authentication is required for all Floify users. This will prompt a user when logging in via a new device or browser to provide either a code either sent via email or text message depending on the settings enabled for that particular team. Company Admins have the ability to reset this for their users.
See a video about this here: Multi-Factor Authentication
Floify MFA sent via Text Message is sent from the number (833) 574-0409.
How to Set Up
Company Settings
From the team pipeline, choose the team name in the upper right-hand corner and select the option to navigate to the Company Dashboard:
Navigate to Company Settings and then Basic Settings:
Scroll down to Multi-Factor Authentication and select the option to Edit Multi-Factor Authentication:
Select which company admins will receive an email when a user is locked out of their account. These users will have access to unlock the account if needed. Select Save to confirm your changes:
Setting Up MFA for User Accounts
When a user logs in for the first time, Multi-Factor Authentication will show a prompt to secure the account. Users can select Get Started:
From there, the security method(s) can be selected one at a time. At least one option must be selected. Currently, the options available are SMS Text Message or Email verification
Once selected, you will be prompted to input the contact information for the selected field, and then press Send Code:
Phone Number
(note: Consent must be given, and the text message policy can be reviewed as needed)
From there, a code will be sent out to the method selected, and can be entered. Once entered, press continue:
If the code needs to be resent, or the contact info needs to be changed, this option can be selected as well:
If multiple methods have been entered, select the preferred method to receive, then select Continue:
The recovery codes for the account will be show. These codes should be saved as an additional method of access in case the methods entered are unavailable to the user. Once copied, press Finish:
From here, the initial setup is complete. To edit these, the same interface is available from the profile settings, which is accessible by selecting the email in the top right corner:
From here, you can scroll down to the Multi-Factor Authentication section and press the Edit Multi-Factor Authentication button:
From there, the prompts can be run through again:
Note: Once a user logs into Floify, their session will be remembered on that device browser for 5 days. This is cookie-based, so logging in on a new device, different or private browser, or after clearing browser data will prompt MFA to be completed again.
Locked Out Users
If a user is locked out and cannot receive the email, text message, and doesn't have their recovery codes, they can notify the selected company admin. The company admin will then receive an email prompting them to go in and reset the user's Multi-Factor Authentication.
From the company dashboard, navigate into the Users tab:
Select the lock icon towards the right of the user's name and email address to reset the Multi-Factor Authentication:
Select Reset Multi-Factor Authentication and select Save:
Note: Resetting a user's MFA will prompt them to set it up again on their next login. A reset is valid for 30 days.
Users will also be locked out after 8 incorrect verification code attempts and will see an option to notify the company admin:
The company admin will then receive an email prompting them to go in and reset the user's MFA
From the company dashboard, navigate into the Users tab:
Select the red lock icon towards the right of the user's name and email address to reset the MFA:
From there, check off the box and hit save, which will reset the user's MFA instance.
Opt-in and Opt-out for Text Message MFA
Texting 'START' to the MFA number (833) 574-0409 will resume (Opt In) any communications with this number and texting 'STOP' will cease (Opt Out) those communications. If you have any difficulties receiving text MFA codes, try texting 'START' to the number above to resolve!
Please sign in to leave a comment.