How does setting up multi-factor authentication / two-step verification / 2FA work?

Multifactor authentication (MFA) makes access to your MailBlue account more secure. Once you have set up multifactor authentication, you must use two identification methods to access your account. The first identification method is your username and password, and the second identification method is a six-digit verification code. The verification code can be generated by an authentication app on your mobile phone or via an SMS message.

Multifactor authentication helps protect data in your MailBlue account and can prevent unauthorised logins.

This article covers the following:

  1. How multifactor authentication works with MailBlue;

  2. Setting up multifactor authentication;

  3. Supported authentication apps.

Please note!

  • Enabling multifactor authentication for logging into your account is not mandatory, but it is recommended.

  • If you choose an authentication app as the second identification method, you need to download an authentication app on your mobile phone. There are different authentication apps to choose from.

  • If you opt for an SMS message as the second identification method, you will receive the verification code directly on your mobile phone.

  • You need a mobile phone to generate a verification code every time you want to log into your account.

  • If you do not have access to a mobile phone, we recommend storing or keeping the recovery codes on a separate device or offline.

  • If you lose access to the recovery codes, you can reset the recovery codes in your account under 'Settings' > 'Security' > 'Reset recovery codes'.

How multifactor authentication works with MailBlue

Users in the administrator group can enable or disable multifactor authentication for individual users or for the entire account. All other users have the option to enable or disable multifactor authentication for their own account login.

First login: users must use an authentication app on their mobile phone to scan a QR code that appears during the login to the account. The QR code appears after they have entered the username and password of their account on the login page. Each user has their unique QR code to scan. This QR code only needs to be scanned during the first login.

After a user scans the QR code, the authentication app generates a 6-digit verification code. You can enter the verification code at the login screen.

Attention! Using a QR scanner app does not generate a verification code.

Once the verification code is entered, users will gain access to the MailBlue environment. To make the multi-factor authentication work, users need to log out and then log back in.

Setting up multi-factor authentication

When you are in the administrator group of your MailBlue account, you can enforce multi-factor authentication for all account users or enable it on an individual basis. If you are not an account administrator, you can still enable MFA for your own account.

You can set up multi-factor authentication in three ways:

  1. Enable multi-factor authentication for all users.
  2. Enable multi-factor authentication for specific users.
  3. Enable multi-factor authentication for own login.

Enable multi-factor authentication for all users

When you are in the administrator group of your MailBlue account, you can enforce multi-factor authentication for all users within your MailBlue account. This means that account users need to provide a verification code along with their username and password to access their account.

If you want to set up multi-factor authentication for all users, you must first have this set up for yourself:

  1. Click on 'Settings' and then on 'Security' in the left menu.
  2. Two switches will appear on the 'Security' page. Click on the switch 'Set for myself' to set it to 'On'.

    MFA.png
  3. Next, you will have the option to choose which identification method you want to use. You can choose an authentication app or an SMS message.
  4. Click on the 'Continue' button.
  5. Enter the verification code and then click on the 'Verify' button.

    - Authentication app: if you select this identification method, a QR code will appear on your screen. Open the authentication app on your mobile phone and scan the QR code. The authentication app will generate a 6-digit verification code. Enter this code in the designated field. You only need to scan the QR code once.

    - SMS message: if you choose this identification method, click on the drop-down menu for the country and then on the country code. Then enter your own mobile phone number in the designated field. A 6-digit verification code will be sent to you via SMS. Enter this code in the designated field.

  6. Click on the 'Verify' button.
  7. Recovery codes will appear. Copy these codes and store them in a safe place. Click on the 'Done' button.
  8. Click on the switch 'Enable for the entire account' to set it to 'On'.

    MFA_2.png
  9. A new window will appear, click on 'Continue'.

Multi-factor authentication is now set up for all users of your account. All users who do not have multi-factor authentication will be logged out.

To enable multi-factor authentication, users must log out and then log back in.

Enable Multi-factor Authentication for Specific Users

If you are an account administrator, you can easily enable multi-factor authentication for users of your account. When multi-factor authentication is enabled, users will need to enter a verification code after logging in with their username and password to access the account.

  1. Click on 'Settings' and then on 'Users and Groups'.
  2. Find the user for whom you want to enable multi-factor authentication and click on 'Edit'.
  3. A new screen for editing the user will open. Find the switch 'Multi-factor authentication' and set it to 'On'.
  4. Click on 'Save'.

User_MFA.png

The account administrator has enabled multi-factor authentication for a specific user.

To enable multi-factor authentication, the user must log out and log back in.

Enable Multi-factor Authentication for Your Own Login

You can also enable multi-factor authentication for your own login. To log in to your account, you will need to enter a verification code in addition to your username and password.

  1. Click on 'Settings' and then on 'Security' in the left menu.
  2. Two switches will appear on the 'Security' page. Click on the switch 'Set for myself' to set it to 'On'.
  3. A new screen will appear with two identification options. You can choose between an authentication app or an SMS message.
  4. Click on 'Continue'.
  5. Enter the verification code and then click on the 'Verify' button.
    - Authentication app: if you select this identification method, a QR code will appear on your screen. Open the authentication app on your mobile phone and scan the QR code. The authentication app will generate a 6-digit verification code. Enter this code in the designated field. You only need to scan the QR code once.

    - SMS message: if you choose this identification method, click on the relevant country in the drop-down menu and then on the country code. Enter your own mobile phone number in the designated field. A 6-digit verification code will be sent to you via SMS. Enter this code in the designated field.

    MFA.png

  6. Click on the 'Verify' button.
  7. A new screen will appear with recovery codes. Copy these codes and store them in a safe place. Then click on the 'Done' button to complete the process.

Supported authentication apps

You can use any of the following authentication apps on your smartphone to access your MailBlue account with multifactor authentication:

  1. Google Authenticator;

  2. Authy;

  3. Authenticator Plus;

  4. LastPass Authenticator.

Was this article helpful?
0 out of 0 found this helpful