Two Factor Authenticating (2fa) was added to iChannel in 2019.
To see if your system has this feature:
- Login as Admin
- Click System Tab
- Click the root site under Quick Links
- Click Advanced Settings
Check this box
If you see “2FA_TIMEOUT”, then your system has 2FA available.
Setting it up:
It can be set on both your web and portal servers, independent of each other. There is a new Advanced Root setting for each.
For your internal users: 2FA_TIMEOUT - Set to turn on Two Factor Authentication. Value is number of minutes to timeout the code
For your portal users: PORTAL_2FA_TIMEOUT - Set to turn on Two Factor Authentication for the portal. Value is number of minutes to timeout the code
The value is the number of minutes this code is valid.
Setting it to 0 (zero) turns off 2fa. HINT: If you need disable 2FA temporarily, consider setting the value to 0 instead of deleting the setting.
This will need to be set for each root site needing 2FA.
From a User’s Point of View
User logs in
If credentials entered are correct, an email containing a random 6-digit code is immediately sent to the address of the subscriber
And a popup appears
If user enters correct code before it expires, and clicks OK, user will be logged in.
Clicking this button will send another email containing the SAME code. It also resets the expiration timer making the code available for another << your setting >> minutes.
Note: The same code is sent to avoid crossed emails which can result in multiple failed attempts locking the user out. However, attempting to re-login with credentials will send a new code every time.