Two-factor authentication (2FA/ MFA)
What is two-factor authentication and why is it important?
Also referred to as multi-factor authentication (MFA) or second-factor authentication, means that whatever application or service you’re logging in to is double-checking that the request is really coming from you by confirming the login with you through a separate avenue.
You’ve probably used 2FA before, even if you weren’t aware of it. If a website has ever sent a numeric code to your phone for you to enter to gain access, for instance, you’ve completed a multi-factor transaction.
All payroll administrators using MultiArray have been using 2FA for several years.
In the latest release an agency will now have the option to turn on 2FA authentication for all users. This is an agency wide switch and once set all users of MultiArray Software and Mobile Applications will need to log on using 2FA.
2FA is an important security feature because it reduces the risks associated with compromised passwords. If a password is hacked, guessed, or even phished, that’s no longer enough to give an intruder access: without approval at the second factor.
Is is mandatory to use 2FA?
Using 2FA is mandatory for all payroll administrators. For all other users if your agency has selected to activate 2FA then all users for that agency will be required to use 2FA in order to access MultiArray Software and Mobile Applications.
How do I set up 2FA for my agency?
Log a support call to have this feature turned on support@multiarray.com.
How do I set-up a 2FA user?
When STP is enabled for your agency, all employees must use a second factor of authentication before they can access MultiArray Software and Mobile Applications.
1. The first time each employee tries to access the software or related mobile applications on a PC once an agency enables 2FA, they will see the following screen. It is important that users first access after 2FA is switched on is via a PC as they will need their mobile phone to scan the QR code and set up the authenticator.
The buttons on the right link to the Google Authenticator app on the Google/Apple app stores. They need to install this app, or any other app which supports TOPT/HOTP authentication, on their mobile device.
Use the app to scan the QR code or enter the 16-character code below it.
2. The app will then generate a 6-digit code, which changes every 30 seconds.
After registering you will be shown the Window below.
Enter the 6-digit code from the authenticator app. If the correct code is entered, you will be able to access the MultiArray Software and Mobile Applications.
This authentication code is required once per login per device, and you may tick the stay authenticated for 24 hours feature.
If a staff member loses/changes their mobile device their second factor authentication can be reset by an office administrator, from the Staff Roles and Security form. Once reset the employee will need to rescan the bar code in step 1 to set up their authentication.
Related Articles
Lump Sum Payments
There are four types of lump sum payments. The reason the categories exist is that the different lump sum payments types are all treated differently, in regards to income tax and superannuation. The four categories are: Lump sum A - Long service or ...eMarketing reports
The email reports section of the eMarketing module provides detailed reports on all eMarketing emails that have been sent. The reports indicate every contact that received, opened, and clicked links in your emails. Click the menu button to ...Creating a New Adhoc Payment
This feature allows you to create adhoc payments to tenants and suppliers from different ledgers within the system. Ledgers available for payment are as follows: Management Agreement Tenant Bond Tenant Deposit Management Agreement: ...