In this article we will answer your key questions about MFA and explain how to switch it on when you are ready. Only customers with our newest identity solution will be able to see and use this option - we are upgrading customers over the coming months and will be in touch soon about this.
Visit this article for more information about which identity server you have now.
Your questions about MFA answered
What is Multi-factor authentication (MFA)?
Multi-factor authentication (MFA) is a a two layer authentication which requires more than just a username/password to access the Kallidus products. In addition to their username/password, your users will be asked to authenticate using an authenticator application. You might be familiar with this from your banking system.
What will Multi-factor authentication mean for your business?
Implementing MFA will bring additional security to your Kallidus products. Rather than relying on a username and password to provide security your users will need to use an authentication app alongside a username and password before they can get into your Kallidus products.
Do I need to switch on Multi-factor authentication if you use Single Sign on (SSO)?
No. If all of your population use SSO to get into the Kallidus products then you have no need to switch on MFA within our products. If you do switch it on and all your users use SSO then our MFA will be bypassed and your users wont see any difference.
Can I switch on MFA if some of my population use Single Sign on and some use username and passwords?
Yes. Only those users who login using a username and password will be required to use the MFA option.
What should I consider before switching on MFA?
1. Do all your users currently use Single Sign on. If they do then you do not need to switch MFA on.
2. Can all of your users use an authentication app to login? Our MFA solution will require all users to use an authenticator app to login.
MFA can be easily switched off if it's not working for you .
How to switch on MFA for your organisation
- Browse to the 'Manage users' section on the top navigation bar
- Select 'Authentication' and scroll to the bottom
- Select the 'Require multi-factor authentication' option to switch on MFA
This will mean from this point forward all users will be required to authenticate using an authenticator app.
What user will see after MFA is switched on
The next time a user logs into one of your Kallidus products they will be prompted to setup their MFA:
Your User will need to select to 'Set up authenticator app'. They will then see a QR code which they can scan and begin the process. They will need to have an authenticator app installed on their device to use for this (they can get from this from the app store or it can be rolled out centrally by your IT team. You might want to speak to your IT team for more information):
The person will then be guided through the creation of code which they will need to enter into the screen. This will tie their device to this system.
Next time the user logs into Kallidus they will then be challenged to authenticate using their device and entering in the correct code. This will be generated from their authenticator app.
How to administer login issues when MFA is switched on
Within each persons information you will be able to see if they have MFA setup. Go to 'Manage users' and then open the details for a user. Scroll down and you will see a section entitled Multi-factor authentication:
If a person is having issues using MFA then you can select 'Actions' and select to remove their MFA link. They can then recreate it.
Get deeper learning in The Academy
The Academy is your learning hub for Kallidus products, including live events, eLearning videos, and more. If you're new to The Academy or know someone who is missing out on free learning, contact your Customer Experience Manager or the Support Team to sign up today.
Discover the latest insights, tips and industry news on the Kallidus blog.