-
Notifications
You must be signed in to change notification settings - Fork 27
MFA #740
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
MFA #740
Changes from 13 commits
Commits
Show all changes
20 commits
Select commit
Hold shift + click to select a range
fc4c86f
MFA
fiquick 249b224
edit
fiquick a15b89a
update
fiquick f858f78
update
fiquick 5c42a35
Merge branch 'console' into MFA
fiquick 77a73ec
Update mfa.adoc
fiquick c4fdf5f
Update mfa.adoc
fiquick c9cc838
Apply suggestions from code review
fiquick 96850f3
update
fiquick 91d247f
update
fiquick e02d774
great
fiquick e6c4c0a
update
fiquick c4387d9
update
fiquick faf9c65
Update modules/ROOT/pages/security/mfa.adoc
fiquick 8af4844
Update modules/ROOT/pages/security/mfa.adoc
fiquick 4b88630
Update modules/ROOT/pages/security/mfa.adoc
fiquick ccd988d
Merge branch 'console' into MFA
fiquick 790120f
Update modules/ROOT/pages/security/mfa.adoc
fiquick 361964e
Update modules/ROOT/pages/security/mfa.adoc
fiquick 2ea071f
Update mfa.adoc
fiquick File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,46 @@ | ||
| = Multi-Factor Authentication | ||
|
|
||
| Multi-Factor Authentication (MFA) adds an extra layer of security to an Aura account log-in by requiring a verification code in addition to username and password. | ||
| The verification code is generated using any authenticator app, such as Google Authenticator. | ||
|
|
||
| There are two scenarios for MFA: | ||
|
|
||
| * Individual users can enable MFA for their own accounts via account settings. | ||
| * Organization administrators can enable MFA for an entire organization, then it's mandatory for all members to go through the MFA setup. | ||
|
|
||
| [IMPORTANT] | ||
| ==== | ||
| Setting up MFA requires logging in using email and password, not using SSO or Google Sign-In. | ||
| ==== | ||
|
|
||
| == Enable MFA as a user via account settings | ||
|
|
||
| . Log in to the Aura Console using email/password. | ||
| . Select *Account > Settings > Preferences > Security*. | ||
fiquick marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
| . Enable *Multi-Factor Authentication (MFA)*. | ||
| . Follow the MFA set up steps. | ||
|
|
||
| == Enable MFA for an organization | ||
|
|
||
| `Organization Owners` or `Organization Admins` can require all members of an organization to set up MFA from organization security settings. | ||
| Then each organization member will be prompted to complete the setup, with an authenticator app of their choice. | ||
|
|
||
| To require MFA organization wide: | ||
fiquick marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
|
|
||
| . Go to *Organization Settings > Security & Networking > App MFA (Multi-Factor Authentication)*. | ||
| . Enable *Multi-Factor Authentication (MFA)*. | ||
|
|
||
fiquick marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| After MFA is enabled at the organization level, all members will see the following message in the console: | ||
|
|
||
| [quote] | ||
| "_Your organization has required Multi Factor Authentication (MFA). | ||
AlexicaWright marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| Clicking enable MFA below will log you out and you will then need to login using your email and password to configure MFA._" | ||
|
|
||
| Selecting *Enable*, logs the user out automatically, and then it's required to continue with MFA setup steps. | ||
fiquick marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
|
|
||
| == MFA set up steps | ||
|
|
||
| . Log in using email and password. | ||
| . Enter the one-time code sent to your email account. | ||
| . Use an authenticator app to scan the QR code in the setup modal. | ||
| . Enter the verification code from the authenticator app. | ||
fiquick marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.