Summary
Multi-Factor Authentication (MFA) adds an extra layer of security to user logins by requiring an additional verification step beyond just a password. This guide will walk you through enabling and configuring email-based MFA on your platform. Note if you're using Single Sign-on, this process will not apply as your MFA settings are configured in your external SSO provisioning tool.
How To:
Step 1 - Navigate
To enable MFA for your platform, log in as a site administrator and go to:
Site Administration > Plugins > Admin Tools > Manage multi-factor authentication
Step 2 - Setup
On the MFA management page, you'll see a range of different factors, in this case we're only exploring the email based factor so we can enable this by clicking on the eye icon.
You'll then need to scroll down to the General MFA Settings and enable this by clicking the checkbox highlighted below:
Further down in the General settings, you can also setup a lockout threshold to prevent too many failed authentication attempts or add additional guidance for users in the form of a Guidance page to help them access the platform using MFA.
Step 3 - Save
Once the above changes have been made, you can scroll down to the bottom of the page to save these changes. Users will then be required to authenticate using an email verification code in order to access the platform. Note, before enabling this ensure your Administrator account/s on the site are using a valid email address, otherwise you won't be able to receive the email and access the platform.