Two-Factor Authentication

SysEleven IAM supports two-factor authentication (2FA TOTP) for user accounts, to enhance account security.

Overview

2FA adds an additional layer of security to your account by requiring a second form of authentication in addition to your password. Currently, we support TOTP (Time-based One-Time Password) tokens.

Enabling 2FA

IdP Federation

2FA as outlined here is not managed administratively, but configured by users themselves. If you want to administratively enable 2FA, you need to connect your IdP to our platform.

Once the domain of the account you are using to login is federated, you will not be able to configure 2FA as outlined here. 2FA is then managed by the federated IdP.

1. Login to the SysEleven Dashboard.

2. From the navigation menu, click on the user icon in the top right corner.

   

3. In the account menu, click on "Manage 2FA". You will be redirected to the Keycloak account console.

   

4. Click on "Set up authenticator application".

   

5. Follow the instructions on the screen to set up your authenticator application.

   

The next time you login, you will be prompted for a 2FA token.