Multi-factor Authentication

Multi-factor Authentication (MFA) is a method of controlling access to ExceedFurther by requiring users to receive and enter a newly generated code each time they log in. MFA requires each user to have the Google Authenticator app on their smart phone or tablet. This app is available for both iPhones/iPads and Android devices.

If MFA is activated, when the user logs in to ExceedFurther using their user ID and password, a unique code is generated and sent to their smart phone or tablet. They have a short time in which to type this code into the log in screen along with their other log in information.

MFA prevents access to ExceedFurther if someone has stolen a user ID and password since it also requires the user's smart phone. It adds an important extra layer of security for your data.

To activate MFA, you must download the Google Authenticator app onto every user's smart phone. Then you follow the steps below for each user to link their personal smart phone app to their log in information in ExceedFurther.

There are two ways to activate MFA from ExceedFurther: 1) from the log in screen; 2) from the Admin tab. In both cases you must first download the Google Authenticator app to your smart phone and have the phone handy.

Activating Multi-factor Authentication

To activate MFA from the ExceedFurther log in screen, enter your user ID and password then click on the Activate MFA button.

To activate MFA from the Admin tab, open the Admin tab from the Hello menu. Select the User Management tab, and then the User sub tab. Select the user name for whom you wish to activate MFA.

In both cases the three step MFA setup screen appears. Follow these steps to activate MFA:

  1. At Step 1, make sure Yes is selected from the drop down list and click Next.
  2. At Step 2, you match the Google Authenticator app to ExceedFurther:
    1. a. Open the Google Authenticator app on your smart phone.
    2. b. If this is your first use of Google Authenticator, tap Set Up.
    3. c. If you have already used Google Authenticator for another account, tap on the + to create a new account.
    4. d. In the Account field, enter the email address you use to log in to ExceedFurther.
    5. e. You can now either type in a key or scan a QR code. Both are generated by ExceedFurther. You can select the one you wish to use by clicking on the choice on the Step 2: Pair Device tab.
    6. f. When you have finished entering the key or scanning the QR code into Google Authenticator, tap on the check mark
    7. g. Google Authenticator generates a 6 digit code. You are now ready to click on Next to go to Step 3 in ExceedFurther.
  3. At Step 3, you enter two valid 6 digit codes from Google Authenticator to ensure that the smart phone app has been correctly paired to ExceedFurther. Begin by entering the first code to appear in Google Authenticator and click on Go.
  4. Wait a few seconds for a new code to appear in Google Authenticator. Enter that code into the Step 3 tab in ExceedFurther and click Go again.
  5. You are now ready to use MFA. Each time you log into ExceedFurther, after you click the Login button, you will need to enter a 6 digit code generated by Google Authenticator on your smart phone. A code is generated as soon as you open the Google Authenticator app.
    1. Note that these codes only last a few seconds. If you do not enter the code soon enough, just wait for a new code to appear and enter that one.

Deactivating Multi-factor Authentication

To deactivate MFA, follow these steps:

  1. Open the Admin tab by selecting Administration from the Hello menu.
  2. Open the User Management tab and then the User sub tab.
  3. Select the user for whom you wish to deactivate MFA.
  4. Click on the Multi-factor Authentication button.
  5. On Step 1, select No.
  6. Click on Next to close the MFA screen.

MFA is now deactivated for the selected user. To deactivate MFA for additional users, repeat from Step 3.