Try RMail PRE-Crime Services – The Multi-Factor Authentication (MFA) feature provides an extra layer of security to user accounts by requiring an additional verification step at login, where users will receive a One-Time Passcode (OTP) to complete the authentication.
Follow these steps to set it up:
1. In the RPortal settings, the Customer Admin must go to the Login Security section under the Cyber Security AI tab and determine if MFA will be available for the company. The following options are available:
- Enabled: MFA will be mandatory for all users in the company.
- Disabled: MFA will not be activated for any user.
- Set by user: Each individual user can decide whether or not to enable MFA for their own account from the user settings.
2. Once MFA is enabled, the Company Admin must select how users will receive their authentication OTP:
- Email: The system will send the OTP to the user's registered email address.
- Mobile: The system will send the OTP to the user's mobile phone.
Note: The mobile option is only available if your company has purchased the corresponding SMS add-on.
When the Mobile option is selected and the Edit icon is clicked, company admins can choose specific users to send an Activation Link. This link allows those users to start the Multi-Factor Authentication (MFA) activation process.
Company admins can send the activation link by clicking the envelope icon next to each user, or by selecting multiple users and clicking Save and Send Activation Link. Users who are sent the activation link must have a mobile number entered.
3. To complete activation, users must click the activation link sent by email, and then enter a code sent to both their email and mobile number.
Note: This process also verifies that the mobile number on file is correct, as it will be the primary channel for receiving OTP codes during future logins. If the user notices that their number is incorrect, they can update it by clicking the Mobile number incorrect? Update it here link.
4. Once the user has entered both codes, MFA is enabled.
5. The next step is for the Customer Admin to select the products for which they want to enable it, under the Activity Management tab in RPortal, by checking the Multi-Factor Authentication option that appears in the Other Features section within the tab for each product.
Configuring the Password Policy
In addition to enabling MFA, the Company Admin can define the company's password policy, which determines the password rules for users. To do this, they need to go to the Password Policy tab and set the Enable Custom Password Policy option to Yes.
Once it is set to Yes, several options will appear to configure the password policy. The Customer Admin can set these options as they see fit.