Multi-factor authentication (MFA) is an enhanced security measure. It is used for securing data and applications where a system requires a user to present one or more additional verification factors to gain access to the platform, decreasing the likelihood of a successful cyber attack.
Once this module is enabled in Antavo, the Backoffice users will be required to provide two types of identification when logging in.
Configure Multi-factor authentication
Follow these steps to set up MFA for increased security of your account:
Click on your username's icon in the bottom left corner.
Click the ‘Manage profile’ button.
Go to the Two-factor authentication tab.
In case this tab is not visible, the module is inactive. Please submit a ticket through the Antavo Service Desk to have this set up in your brand.
After you have clicked on the tab, you will be asked to obtain the Google authenticator application for your mobile device.
Once you have installed it on your mobile device, select the ‘Google Authenticator verification method installed and click ‘Next’ and scan the QR code that appears on the screen. This action will add your Antavo account to the authenticator app on your mobile device.
Enter your password and the unique, 6-digit code that you can find in the authenticator app to sign in to the Backoffice. A new code is generated every 30 seconds.
Enforce Multi-factor authentication
Brand owners or those who have elevated Backoffice administrator rights can enforce the platform users to use two-factor authentication when logging in for increased security. This functionality is available for configuration under the Users interface.
If the two-factor authentication is enforced, but the user’s authentication has not been configured yet when trying to log in, the user is redirected automatically to the MFA configuration interface (https://loyalty.{environment}.antavo.com/user/2fa/select) and has to go through all steps of MFA setup before accessing the pages of the Backoffice.