Skip to main content

Enter your search

Results will be displayed to the left.

Multi-factor Authentication

Why is multi-factor authentication necessary?

Digital security is critical in today's world because both businesses and users store sensitive information online. Everyone interacts with applications, services, and data that are stored on the internet using online accounts. A breach, or misuse, of this online information could have serious real-world consequences, such as financial theft, business disruption, and loss of privacy.

While passwords protect digital assets, they are simply not enough. Expert cybercriminals try to actively find passwords. By discovering one password, access can potentially be gained to multiple accounts for which you might have reused the password. Multi-factor authentication acts as an additional layer of security to prevent unauthorized users from accessing these accounts, even when the password has been stolen. Businesses use multi-factor authentication to validate user identities and provide quick and convenient access to authorized users.

Troubleshooting

Having problems with Multi-factor Authentication? Click here.

Getting a new device?

Before you move to a new device (phone) please see the notes below.

Multi-factor Authentication

It is strongly advised that you configure BOTH options. You can select your prefered default option at any time.

Once the setup is complete get your BACKUP CODES, these will be required if you change your phone or some other issue is preventing the Verification or Web Auth Passkey from working as expected.

Verification Code

Option 1

This MFA method uses an Authenticator app on your phone to generate one time 6 digit passwords for second factor authentication.

Get started

Web Authorization

Option 2

This MFA method uses the biometric reader (finger print) on your phone for second factor authentication. This method is not supported by Firefox.

Get started

Verification Code using Authentication App

Supported

Step 1

Log in to your Joomla account then from the Home menu select Edit Profile under Login.

Scroll down until you see the section for Multi-factor Authentication.

Here you will see two options for MFA:

  1. Verification Code
  2. Web Authentication.

We recommend configuring both so you have a backup method to login.

Step 2

We will setup the Verification Code first. This method requires an Authentication App installed on your phone. There are browser apps that will work; however you will need to have the browser app to log in to the site on a portable device so they are NOT recommeneded. 

Microsoft Authenticator

This is required by the TOH for multi-factor authentication, please use this app if you are employed by the RPPEO (TOH).

Get the App

Google Authenticator

If you are not required to use the Microsoft Authenticator app this is another supported option.

IPhone link

Get the app

Step 3

From the MFA options listed under your profile verify that Verification by email is not enabled, then click add new verification code.

  1. Enter a Title for this MFA method, I’ve named it Microsoft Authentication code so it will be easier to identify when I login.
  2. You can make this the default method, this can be changed at any time by editing your profile.
  3. From the Authenticator app add a new account and select the option to scan a QR code. When the camera appears on the app, scan the QR code on your screen
  4. Once the app has scanned the QR code and set up the account, select the new entry in your authenticator to see the one time six digit password. Enter the password where shown in the image (left) and click Save.
  5. You should now see the new Authentication method in your Profile. You can edit and delete this MFA method from here as well.

Step 4

The Verification Code will now be configured and enabled for your account.

When you login you will now be presented with a screen asking for your Verification Code. Enter the code from your phone to complete the login.

Now click the link below to learn how to get your backup codes. Do not skip this step.

GET YOUR BACKUP CODES!

Web Authorization using your Phone

Not Supported

IMPORTANT:

This method works with Google Chrome and Microsoft Edge. Firefox does not support this login method.

Step 1

This method uses your phone’s biometrics to login using your fingerprint.

Return to you profile edit page and scroll down to the MFA section.

Click Add a new auth method

Step 2

On this page, please update the Title to something that will make it easy to identify when needed.

Click Register your Authenticator.

Step 3

You will now be presented with 3 pop ups.

Click OK

You will see this popup with Chrome and Edge, click okay. This MFA method is not supported by Firefox.

Click Cancel

The browser will ask for a USB based token by default, click cancel.

Select your Phone

Unlock your phone and you should see the phone connecting, when the site has connected with your phone you will be asked to complete the process using your finger print. Once complete you will be able to select this login method. 

Web Authentication is now configured

Login using Web Authentication

When you login and Web Authentication is your default, you will now see a page asking you to Validate with your Authenticator. If you are using a laptop or PC, open your phone to complete the MFA Authorization by providing your finger print. If you are browsing with your phone you will be asked for your finger print once you click Validate with your authenticator. 

Complete login on your phone

Have your phone ready, when you click the Validate with your Authenticator, your phone will begin the validation process as shown to the right.

Once connected to your phone you will be asked for your finger print to continue.

Now click the link below to learn how to get your backup codes. Do not skip this step.

GET YOUR BACKUP CODES!

Important Notes:

  1. If you are going to be moving to a new phone, FIRST get your backup codes. 
  2. Microsoft Authenticator has an option to back up your account credientials, you can then restore to your new device. Info from Microsoft
  3. The Google Authenticator does not require extra steps to backup your credientials, this information will be transfered to your new device once you have setup your Google account on the new device.

Backup Codes

The site will generate a set of backup codes that can be stored SECURELY and used should the other multifactor options fail. 

Click the Select a different method as shown above to select Backup Code and enter one of the saved backup codes.

Changing the default method for Authorization

To change the default method for logging in you can open Edit Profile, then click on the method you would like to be the default. When it's settings page opens you will see a checkbox to set as default. Check the box and save your profile.

MFA also offers Backup codes as an option should you have issues with the standard MFA options. These codes must be saved somewhere secure.

Select MFA Method during logon

You may also select a different method while logging in. Simply click the Select a different Method link on the MFA Login page.