Introduction
Multi-factor authentication (MFA) is an enhanced security measure. Once enabled, the Antavo Loyalty Platform users will be required to provide two types of identification when logging in to the Backoffice.
Configuring Multi-factor authentication
Follow these steps to set up MFA for increased security on your own profile.
Search MFA from the module list and make sure it is active. If the module is not enabled yet, contact Antavo Service Desk.
Click on your username's icon in the bottom left corner.
Click on the Manage profile button.
Go to the Two-factor authentication tab.
You will be asked to obtain the Google authenticator application for your mobile device.
Once installed, click Next and scan the QR code that appears on the screen. This action will add your Antavo account to the authenticator app.
You must enter your password and the unique, 6-digit-code to sign in to the Backoffice. A new code is generated every 30 seconds in the mobile device app.
Enforcing Multi-factor authentication
Brand owners or those who have elevated Backoffice administrator rights can enforce the platform users to use two-factor authentication as a login method for increased security.
Find this setting by navigating to General settings → Users, select the platform user and scroll down to the bottom of the page.
What happens if MFA is enforced but the settings are not done correctly?
If the user is required to log in using MFA, but it is not yet set for the brand (the module is turned off) or the user (the Google Authenticator app is not connected to Antavo), then the following page will appear upon login:
After logging the user is navigated to: loyalty.brand.antavo.com/user/2fa/select
All the menus (main menu, module menu) are disabled
There is a logout button beside the “Next” button.