EBS: Multi-Factor Authentication (MFA) in Everbridge Suite

lock-solid.svg

Topic:

Multi-Factor Authentication (MFA) in Everbridge Suite.

Description:

Why Do We Need Multi-Factor Authentication?

Simple authentication, which requires only a username and password combination, can be inherently vulnerable. Cyber attackers can steal credentials and then gain access to a system using a variety of techniques like credential stuffing, phishing, keylogging, or man-in-the-middle attacks. MFA is a method widely adopted by enterprise software to strengthen security on user access.

Features

  • MFA can be configured to be ON or OFF for Manager Portal normal login at the account level by the account administrator.
  • Email OTP (One-time Password) or Mobile App authenticator can be chosen as a 2nd-factor authentication method by the account administrator for all users of the account.
  • Account administrators will be provided with some self-service mechanisms to support urgent MFA login issues. (e.g., cell phone lost

What Is Out of Scope

  • Member Portal login
  • Manager Portal SSO login
  • Logins from Mobile Apps (ManageBridge and Everbridge)
  • Rest API login

How to Turn On MFA for Your Users

  1. Log in to the Manager Portal at the account level
  2. Select Settings from the top menu bar
  3. Select Multi-Factor Authentication from the menu on the left
  4. Toggle the OFF switch to ON
User-added image

How the Login Experience Works When MFA Is Enabled

Please note that the below is an example. The QR code and other data displayed in the example will be different for your site.  

Email OTP

After providing login credentials, the user will be requested to provide the One Time Password sent through email (using the email address provided in the user profile.)

User-added image User-added image
 

Google Authenticator App - Set up your account (one-off process)

User-added image

 

 
User-added image User-added image User-added image


When the one-off setup of Authenticator is done for the account, users will be asked to check and provide the 6-digit verification code for that account in their Authentication App.

 
User-added image User-added image

 

How to Reset Mobile Authenticator for Registered Users

User-added image


Note: In case of an emergency where registered users cannot get hold of their device with Mobile Authenticator, they can contact their Account Administrator to reset their Authenticator and then re-register using another device. When the reset is done by an Account Administrator, users will be notified through email.

Tips and Considerations Before Going Live With Multi-Factor Authentication (MFA)

  • Inform your users in advance so that they know they will experience a different login process and be prepared.
  • The App solution we use is fully compatible with Google Authenticator. If you want to use a different Authenticator App, please seek advice from your IT department.
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.