Configuring Multi-factor Authentication

You can enable multi-factor authentication for your users. When multi-factor authentication is enabled, first, the users will be prompted for password authentication and then for Email OTP, when they log in for the first time and thereafter.

To configure multi-factor authentication as a tenant administrator:

1. Log in to the Advanced Authentication service.

2. To create a chain of authentication, complete the following steps:

   1. From the left menu, select Chains.

      For more information about chains, see “Creating a Chain” in the Administrator’s Guide to Advanced Authentication.

   2. Select New Chain

   3. For Authentication Methods, add the chain options in the following sequence:

      1. Password

      2. Email OTP

      Do not select authentication methods other than Password and Email OTP.

   4. For the repositories that use these authentication methods, specify the following names:

      • secops_localusers

      • igbootstraps

      You must start typing the repo name before you can select it.

   5. Select Save.

3. To update authentication events, complete the following steps:

   1. From the left menu, select Events.

   2. Select the <tenant>-FUML event to update.

      1. Deselect current Chains in use.

      2. Select the new chain that you created in Step 2.

      3. Select Save.

   3. Select the <tenant>-FUMB event to update.

      1. Deselect current Chains in use.

      2. Select the new chain that you created in Step 2.

   4. Select Save.