在线帮助

Security settings »
How to enable two-factor authentication?

Translate this page to

For My DSO Manager, the security of your data is a top priority.
In addition to the password, Two-Factor Authentication (2FA) adds an extra verification step when logging in to further strengthen the security of your access and data.

Access and configuration

This option is available in the Admin → Secure my account and user accounts section.

2FA can be activated according to the desired scope:

At Multi level: applies to users linked to the Multi-account.
At Entity level: applies only to users of the selected entity (mass activation possible).

Prerequisites

Have a TOTP-compatible 2FA application. Below is the list of tested and validated applications.
Be the Main Administrator to activate 2FA.
Keep access to your mobile device used for validation.

Activation

Activation is reserved for the Main Administrator of the relevant structure.
The administrator password is required to validate activation, unless your access is managed through SSO.
Steps to follow:

Go to Admin → Secure my account and user accounts and check the option Enable Two-Factor Authentication (2FA).
At the next login, the user scans the QR code displayed on screen with their authentication application.
The application generates a 6-digit code (valid for a few seconds).
At each subsequent login, this code will be required in addition to the password.

Once these steps are completed, Two-Factor Authentication is active.
To make it effective, users must log out and then log back in to finalize configuration.

Compatible applications

All TOTP (Time-based One-Time Password) authentication apps are compatible with My DSO Manager.
The following applications have been tested and validated:

Google Authenticator → Set up
Microsoft Authenticator → Install
Bitwarden Authenticator → Set up
Ente Auth (2FA Authenticator) → Learn more
LastPass Authenticator → Documentation
Aegis Authenticator → Configure
Proton Authenticator → Set up
FreeOTP / FreeOTP+ → FreeOTP / FreeOTP+
OpenOTP Token → Install
Twilio Authy → Use
Salesforce Authenticator → Set up
Duo Mobile → Duo Guide
Okta Verify → Configure
PingID → Set up PingID authentication

Reset / change of application

In case of an error or loss of access, the user can regenerate a QR code from the same interface.
If changing authentication app, contact My DSO Manager Support to reset configuration.

Associated security measures

After 5 failed login attempts: the account is locked for 1 hour.
After 10 failed login attempts: the IP address is locked for 24 hours.

Good to know

2FA can be combined with SSO (Single Sign-On) for maximum security.
If you encounter any issue or configuration question, My DSO Manager Support can assist you.

« How to maximize the security of your account? »

← 退回 : 在线帮助 » 各项问题

Security settings » How to enable two-factor authentication?