Multi-factor authentication (MFA) - sometimes referred to as two-factor authentication (2FA) - is a multi-stage verification method which adds additional layers of security to your account.
When enabled for your Good Grants account, it adds a second verification method using an authenticator app or SMS. This means that if someone wants to hack into your account they not only need to steal your password, they'll also need to steal your mobile device!
We recommend enabling MFA for your own account and encouraging your users to do the same. Setting it up is very easy.
- Click on your name at the top right and choose Profile from the menu
- Go to the Security tab
- Switch on the Multi-factor authentication toggle
- You will need to install a time-based authentication app like Google or Microsoft Authenticator on your mobile device to complete the setup. Once enabled you'll have the option to switch over to SMS authentication if you prefer. For SMS authentication you'll also need to add a mobile number to your account by clicking your name at the top right and choosing Profile. Then add and save your mobile number.
You can require MFA for specific roles. This will make it mandatory for users with that role. To do this go to Settings > Users > Roles and check the option next to Require multi-factor authentication.