Setting up MFA (multi-factor authentication)

Avatar
Jules Truong
Follow

Ci offers multi-factor authentication (also known as MFA and 2FA) to verify access to the user's Ci account.

Enabling MFA

In order to enable MFA, the user should follow these steps:

1. Log in to Ci;

2. Click on the user's avatar, then click "Account settings":

MFA_AccountSettings.png

Figure 1: Getting to the Account Settings page

 

3. On the "Account Settings" page, click the "Sign in & Security" tab.

MFA_Enable.png

Figure 2: Security tab on the Account Settings page

 

4. Make sure the email address is verified.

5. Click the "Enable" button next to the "Ci two-factor authentication".

6. Insert a phone number and click the "Send Code" button.

MFA_InputPhoneNumber.png

Figure 2: Security tab on the Account Settings page

 

7. Upon receiving a code, insert it into the following modal window and click "Verify"

MFA_Code.png

Figure 3: The final step of enabling the MFA feature

Set up is complete. The user will be presented with a set of recovery codes they may use in case they lose access to their device. The user may print or download this set. Each code in the set may only be used once.

Updating MFA

1, in Account Settings, click "Sign in & Security".
2. Click "change phone number" (see the image below)
3. You can enter your current phone number, and then your new phone number to receive an authentication code.
4. After entering an authentication code sent to your new device, your phone number is updated.

MFA_UpdateNumber.png

Figure 4: TWO-FACTOR AUTHENTICATION page


Removing MFA
You can click a trash icon on the right and remove MFA.
In case you do not have access to Ci due to phone number change, please contact Support.

Accessing Ci using MFA

Upon enabling MFA, when a user tries to log in to Ci after they insert their email and password and click "Login", they will be asked to provide an authentication code, which will be automatically sent to the phone number the user had specified during the setup step.

MFA_LoginScreen.png

Figure 5: The second step of Two-factor authorization

 

The verification code is valid for 5 minutes. If it expires, the user will have to click the "Resend" button.

 

Please note, that some Company Networks require you to have 2FA enabled on your account in order to access any Workspaces within it. This may be reflected by a warning icon on the Workspace Icon, or a prompt upon login to set 2FA.

CN2FA_WorkspaceNeeds.png

Figure 6: Workspace Requires 2FA

CN2FA_UserNeeds.png

Figure 7: Warning Modal that a Company Network needs 2FA

 

Going to your Sign In & Security, you may also see a notification stating that x amount of Workspaces require 2FA to be turned on for your account.

CN2FA_UserNeedsIt.png

Figure 8: User Sign In & Security, 2FA required to access a Workspace

 

 

For any additional questions, please reach out to the Ci Customer Success Team by submitting a request here in the Help Center. 

 

Have more questions? Submit a request