Enable Multi-Factor Authentication (MFA/2FA)

What is Multi-Factor Authentication?

Multi-factor authentication (MFA) is a powerful security tool designed to enhance the protection of sensitive information. By requiring multiple forms of verification, MFA defends against various cybersecurity threats and reduces reliance on traditional password-based security. Even if one factor (e.g., a password) is compromised, an attacker still needs the second factor to gain access.

2FA, or Two-Factor Authentication, is a subset of MFA that specifically requires two forms of authentication.

How to enable Multi-Factor Authentication

To enable MFA, raise a support request through Zendesk with the URL of the Limio environment(s) where you need MFA enabled. Limio Support will activate MFA in the requested environment.

We recommend starting with your lower environments and proceeding to your Production environment after testing it with a subset of users.

How to enforce Multi-Factor Authentication

Currently, there is no way to enforce MFA in bulk across all users in Limio. However, to enforce MFA for multiple users, you can initiate a password reset for the desired accounts. This process will:

1. Log the users out of the system.

2. Prompt them to set up MFA upon their next login.

For step-by-step guidance, please refer to our support article: Set Up a New User

Important Note: As a security standard, users will be logged out if 30 days have passed since the last successful login attempt, and will need to provide a valid TOTP from the registered MFA device.

If the registered MFA device has been lost or needs to be changed, this can be done by following the steps in Reset User's MFA Device.