Multi-Factor Authentication (MFA) in Everbridge Suite.
Why Do We Need Multi-Factor Authentication?
Simple authentication, which requires only a username and password combination, can be inherently vulnerable. Cyber attackers can steal credentials and then gain access to a system using a variety of techniques like credential stuffing, phishing, keylogging, or man-in-the-middle attacks. MFA is a method widely adopted by enterprise software to strengthen security on user access.
- MFA can be configured to be ON or OFF for Manager Portal normal login at the account level by the account administrator.
- Email OTP (One-time Password) or Mobile App authenticator can be chosen as a 2nd-factor authentication method by the account administrator for all users of the account.
- Account administrators will be provided with some self-service mechanisms to support urgent MFA login issues. (e.g., cell phone lost
What Is Out of Scope
- Member Portal login
- Manager Portal SSO login
- Logins from Mobile Apps (ManageBridge and Everbridge)
- Rest API login
How to Turn On MFA for Your Users
- Log in to the Manager Portal at the account level
- Select Settings from the top menu bar
- Select Multi-Factor Authentication from the menu on the left
- Toggle the OFF switch to ON
How the Login Experience Works When MFA Is Enabled
Please note that the below is an example. The QR code and other data displayed in the example will be different for your site.
After providing login credentials, the user will be requested to provide the One Time Password sent through email (using the email address provided in the user profile.)
Google Authenticator App - Set up your account (one-off process)
When the one-off setup of Authenticator is done for the account, users will be asked to check and provide the 6-digit verification code for that account in their Authentication App.
How to Reset Mobile Authenticator for Registered Users
Note: In case of an emergency where registered users cannot get hold of their device with Mobile Authenticator, they can contact their Account Administrator to reset their Authenticator and then re-register using another device. When the reset is done by an Account Administrator, users will be notified through email.
Tips and Considerations Before Going Live With Multi-Factor Authentication (MFA)
- Inform your users in advance so that they know they will experience a different login process and be prepared.
- The App solution we use is fully compatible with Google Authenticator. If you want to use a different Authenticator App, please seek advice from your IT department.