Multi-factor Authentication
Last updated
Last updated
Using Multi-factor Authentication adds an extra layer of security to your account, in case someone is able to obtain your username and password. Ardexa supports multi-factor authentication via one-time-passwords provided by Google Authenticator, Microsoft Authenticator or other compatible mobile apps. Once it is enabled on your account, you will need to enter your email and password, plus a six-digit one-time password generated by your authenticator app to log on to the Ardexa Cloud.
As of May 1, 2024, Multi-factor Authentication must be enabled on all Ardexa Cloud accounts in order to access the system. Users that have not enabled MFA previously will be forced to do so the next time that they log in with their username and password.
When you initially accept an invitation to join the Ardexa Cloud, you will have to complete the registration form with username and password and be redirected to the login page. See Invites for more details.
After a successful login, you will be required to enable your Multi-factor Authentication. This dialog will prompt you to enable it on your account:
To enable Multi-factor Authentication voluntarily, you can go to:
User -> My Profile page -> Profile tab and press the "Enable Multi-factor Authentication" button:
After opting to enable Multi-factor Authentication, a wizard will guide you through the process. The main steps are:
Generating a QR code containing a Multi-factor Authentication secret, which can be scanned by your authenticator app.
Entering a code generated by the new authenticator entry. Note:
If you get stuck at this step, you can re-start the process and generate a new QR code
Once this step is completed, Multi-factor Authentication will be required for all future login attempts
Once your authenticator has been confirmed successfully, you will be presented with a 32-character Multi-factor Authentication recovery code. Please store this securely as it can be used to circumvent Multi-factor Authentication on your account. We recommend printing it out and storing in a physically secure place, or saving in a password manager.
If you lose access to your authenticator app/device, you can enter a Multi-factor Authentication recovery code after logging in with your username and password. When prompted for a Multi-factor Authentication code, click the Use Recovery Code button:
Then enter your recovery code when prompted and click Submit.
If successful, you will need to re-enable Multi-factor Authentication immediately to access your account.
If you get stuck, or don't have access to the new device you would like to use for Multi-factor Authentication, don't panic. Your recovery code can be used multiple times, until you successfully re-enable Multi-factor Authentication on your account and generate a new recovery code.
Note: Earlier versions of our Multi-factor Authentication implementation issued six single-use recovery codes. These codes can still be used if you have not generated a new, single recovery code on your account.
If you have issues enabling a new MFA device after using a recovery code and need to retry, you will need to use a different recovery code
If you have an original set of recovery codes, Ardexa recommends generating a new, single recovery code as described below.
If you lose your recovery code or were not issued one when enabling Multi-factor Authentication on your account, but still have access to your MFA device, you can generate a new recovery code on the User Profile page:
After clicking this button, you will need to enter a valid one-time-password from your authenticator in the dialog and click Generate. If the code was valid, a new recovery code will be displayed. This new recovery code replaces any previous recovery code(s) that were active on your account.
Please remember to store it securely.
If you have issues recovering access to your account due to a lost recovery code, please contact support@ardexa.com. To minimise the risk of scamming, we also advise contacting your Workgroup Owner and/or Ardexa Account Manager so we can confirm your identity and situation with them before re-setting Multi-factor Authentication on your account.
Due to these extra precautions we cannot guarantee timely access to your account if it needs to be manually recovered. As a guide, account recovery can take between one and three business days.
Correctly storing and using a recovery code is strongly recommended by Ardexa.