Skip to main content

Multi-Factor Authentication (MFA)

Updated

The EU DataVault Storage Console supports Multi-Factor Authentication (MFA) using various third-party authenticator applications. Learn more about how MFA works in this section.

 

Enabling and Disabling MFA

By default, your EU DataVault Storage account does not have Multi-Factor Authentication (MFA) enabled. However, turning on MFA is a snap and it significantly boosts the security of your account.

EU DataVault Storage Console provides the ability to enable MFA for you and your organization.

To enable MFA:

  1. Navigate to the Profile Settings page.

  2. Click the Multi-Factor Authentication switcher button to enable MFA. You will notice the switcher turn green, indicating that MFA is now active.

Once you have enabled MFA, you will be asked to set it up at your next login. You will need an authenticator application to generate a unique code to login to EU DataVault Storage Console.

The EU DataVault Storage Console's Multi-Factor Authentication supports various third-party authenticator applications, such as Google Authenticator, Microsoft Authenticator, or others. Once you set up the MFA authentication, EU DataVault Storage Console will ask for the unique code that is generated on your chosen authenticator application at every log in.

As a root user in EU DataVault Storage Console, you have the option to enable/disable MFA for sub-users linked to your account. Additionally, root users can also enforce MFA policy to the whole organization to protect all access to EU DataVault Storage Console. Learn more about this on Organization-Wide Policies section.

 

If you enable the "Enforce MFA policy to all users in your organization" checkbox and confirm the change, the MFA becomes mandatory for all sub-users, making it impossible for any sub-user to disable MFA.

To disable MFA:

  1. Go to the Profile Settings page.

  2. Click the Multi-Factor Authentication switcher button to disable MFA. The switcher will turn grey, indicating that MFA is now inactive.

Please note, disabling MFA will revert your login process to using only your username and password.

 

MFA Reset

If you lose access to your authenticator device or need to reset your Multi-Factor Authentication (MFA), you can reset your MFA settings by following the steps in this section.

Please note that this process is only possible while you are logged into your EU DataVault Storage account and your session is active:

The steps are as follows:

  1. Navigate to the Profile Settings page.

  2. In the MFA section, click on the Reset MFA for this account button.

  3. A message will appear confirming the successful reset of your MFA.

This reset process allows you to link a new device with your MFA-enabled account, should your previous device be lost or malfunction.

It's important to note that active sessions expire after 30 days of inactivity. If you are unable to log in and reset your MFA due to an expired session, you will need to contact our support team for assistance.

Once the MFA reset process is completed, you will be prompted to set up MFA again at your next login with a new device using an authenticator application.

MFA Reset for Individual Sub-Users by Root User

For root users who need to reset Multi-Factor Authentication (MFA) settings for other sub-users within their organization, MFA reset button is available under the Organization-wide Policies section for each sub-user.

 

Organization-Wide Policies

A root user has a few more MFA options under the Organization-wide policies. You will see a list of sub-users linked to your main account and you will be able to manage their MFA settings.

One important feature is the Enforce MFA policy to all users in your organization checkbox. If you enable this checkbox and confirm the change, the MFA becomes mandatory for all users, including you. Essentially, it locks in the MFA policy across your organization, making it impossible for any sub-user to disable MFA.

As for individual sub-users, while they cannot disable MFA once the organization-wide policy is in effect, they can still reset their own MFA. Please note that this process is only possible while you are logged into your EU DataVault Storage account and your session is active.

There is also a Reset MFA button for each sub-user in the Organization-Wide Policies list.

Organization-Wide Policies are exclusively available for root users. Sub-users do not have access to these functions.

Powered by Zendesk