Multi-factor Authentication

Multi-factor authentication can be enabled in the Corteza Admin web application under system  authentication  multi-factor authentication.

You can configure OTP via email by enabling the allow of the force users to use one-time-password over email option and optionally change the default end time for the OTP.

You can configure OTP via authenticator app by enabling the use time based one-time-password (using mobile application) option and change the default issuer displayed in the authenticator app.

Next, to enable OTP for a specific user, navigate to system  users and click on the edit icon next to the user you wish to enable it for. Navigate to the "multi-factor authentication" section and click on the enable button.

From that point on, when a user attempts to login, they will receive an email with the OTP, which they need to provide before the login is finished.

To use MFA over email, navigate to your profile and click on the "security" tab.

Click on the configure button in the "additional security with one-time-password over email" section.

The next time you login, you will need to confirm the login by entering the OTP sent to your email.

To use MFA over email, navigate to your profile and click on the "security" tab.

Click on the configure button in the "additional security with mobile app (time-based one-time-password)" section.

Open up your authenticator app and configure Corteza by either scanning the QR code or by manually providing the parameters.

The next time you login, you will need to confirm the login by entering the OTP generated by your authenticator app.