Multi-Factor Authentication

What is Multi-Factor Authentication?

Multi-factor authentication (MFA) is a security feature that requires an additional form of verification beyond your username and password to log in to your account. Typically, a secure one-time login code is provided via SMS (text message), Authenticator App, Email, or other means. 

"Multi-factor authentication is like adding an extra lock to your door; it significantly improves security by requiring multiple forms of identification, making it much harder for unauthorized users to gain access."

This extra layer of authorization has become an industry best practice and another step in our ongoing journey to ensure your software solutions are as secure as possible. 

 

MFA Setup

After logging in with your username and password, you'll be prompted to select one of two MFA methods to receive your six-digit security code. 

  1. Enter your cell number to receive a text message. 
  2. Use an Authentication App, such as Google or Microsoft Authenticator. 

MFA-Initial-Screen.png

Important: Whichever MFA authentication method you select will become your default method each time you log in.

For example, if you choose SMS, at your next login, you'll automatically receive an SMS with a security code.

 

SMS (Text Message) Setup

  • Click on SMS and enter your mobile phone number.
  • Click the blue Continue button, and you'll receive an SMS (text) message with a 6-digit security code.
  • Enter that code in the corresponding text box and click Continue to log in!

SMS-MFA-Setup-Flow.jpg

Note: the 6-digit code will come from phone number (865) 424-2231.

Authenticator App Setup

  • Click on Google Authenticator or similar. On the screen that appears, scan the QR code using your preferred Authenticator App. 

    MFA-QR-Code-Screen.png

  • After scanning the QR Code, a 6-digit code associated with your account will appear in your preferred Authenticator App (below). Enter this code in the corresponding text box and click Continue to log in!

    MFA-Auth-App-Flow-Google-Authenticator.png

Email Authorization Setup

After logging into Amplify via SMS or an Authenticator App, you may choose to set email as your default MFA login method. Follow these instructions to do so.

  • Logout of Amplify, then log back in using your username password. 
  • At the bottom of the MFA screen, click Try another method.
  • On the screen that appears, click Email, enter your email address, and click Continue.

    MFA-Email-Flow.png

  • You'll receive an email from no_reply@account.myamplify.io with the subject, "Complete MFA for Your Account."
  • Copy the 6-digit security code from within this email, paste it into the corresponding box, and then click Continue to log in.

 

FAQ's and Troubleshooting

 

FAQ's

  • No. After initial setup, on the MFA login screen, click Remember this device for 30 days. MFA will not be required for the next 30 days.

    MFA-Remember-Device-30-days.png

    Note: Bypassing MFA should be treated with caution. This option should not be selected on a publicly accessed computer. 

  • No. Compromised passwords are one of the most common ways for bad actors to access your sensitive data and systems. Putting MFA in place is one of the easiest and most effective ways to shield your ministry from potentially irreparable damage caused by unauthorized access.

  • No. Donors who log into Giving through your Giving Form(s) will not be required to use MFA.

    Only users with an Amplify User Profile will be presented with the MFA screen - below. (Amplify Users can be found by clicking Manage on the Amplify Dashboard, then on the Users sidebar menu item).

    Amplify Users Screen.jpg

  • Yes. At the bottom of the MFA login screen, click Try another method. You'll be presented with the option to use email, as well as either SMS or an Authenticator App—whichever you used when you first set up MFA. 

    MFA-Try-Another-Method-Flow.png

    Note: If you'd like to change from an Authenticator App to SMS or vice versa, please contact our Support Team, and they can reset your MFA options for you.

 

MFA Troubleshooting

  • In most circumstances, the MFA authorization email should come very promptly. If you don't receive it within 3-4 minutes, check your spam or junk folders for an email from no_reply@account.myamplify.io with the subject line, "Complete MFA for Your Account."

    If the email cannot be found, try clicking Resend on the MFA login screen to generate a new email.

    MFA-Resend-Email.png

  • If you cannot scan the provided QR code, click Trouble Scanning. The screen that appears will provide a code made up of letters and numbers. Most authenticator apps allow you to copy/paste this code to set up a new MFA method rather than scanning a QR code. 

    MFA-AuthApp-Code-Setup-Flow.png 

 

Updated

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request