This topic describes the multi-factor authentication feature.
1. Multi-factor authentication (MFA) is a security feature that enhances account security by requiring users to provide multiple forms of identity verification to log on. These methods can include a username and password, a text message code, or an authenticator.
2. If both Secure Phone Text Message Authentication and Authenticator Authentication are selected, users only need to use one of these methods to log on.
Procedure
1. Turn on the Enable Two-factor Authentication switch.
2. In the Enablement Scope section, select the objects for which to enable MFA. To exclude specific accounts, open the selection box and add them as exceptions.
3. Select an authentication method. More methods are being added.
4. Click Save.
All accounts with MFA enabled must be attached to a secure phone. If an account does not require a secure phone, add it to the exceptions.
For more information about how employees can use an authenticator, see How employees can use an authenticator.