# Enable Multi-Factor Authentication (MFA/2FA)

## **What is Multi-Factor Authentication?**

Multi-factor authentication (MFA) is a powerful security tool designed to enhance the protection of sensitive information. By requiring multiple forms of verification, MFA defends against various cybersecurity threats and reduces reliance on traditional password-based security. Even if one factor (e.g., a password) is compromised, an attacker still needs the second factor to gain access.

2FA, or Two-Factor Authentication, is a subset of MFA that specifically requires two forms of authentication.

## **How to enable Multi-Factor Authentication**

To enable MFA, [raise a support request](https://limio.support.site/) with the URL of the Limio environment(s) where you need MFA enabled. Limio Support will activate MFA in the requested environment.

We recommend starting with your lower environments and proceeding to your Production environment after testing it with a subset of users.

<figure><img src="/files/btHCo9ajWJyhAWNwwKvo" alt=""><figcaption></figcaption></figure>

## **How to enforce Multi-Factor Authentication**

Currently, there is no way to enforce MFA in bulk across all users in Limio. However, to enforce MFA for multiple users, you can initiate a password reset for the desired accounts. This process will:

1. Log the users out of the system.
2. Prompt them to set up MFA upon their next login.

For step-by-step guidance, please refer to our support article: [Set Up a New User](/support/user-permissions-and-administration/how-to-set-up-a-new-user.md)

**Important Note:** As a security standard, users will be logged out if 30 days have passed since the last successful login attempt, and will need to provide a valid TOTP from the registered MFA device.

If the registered MFA device has been lost or needs to be changed, this can be done by following the steps in [Reset User's MFA Device](/support/user-permissions-and-administration/how-to-enable-multi-factor-authentication-at-limio-mfa-or-2fa/how-to-reset-a-limio-users-mfa-device.md).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.limio.com/support/user-permissions-and-administration/how-to-enable-multi-factor-authentication-at-limio-mfa-or-2fa.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.