What is Two-Step Verification?
Two Step Verification (2SV) works by adding an additional layer of security to your HRplus Software accounts. It requires an additional login credential – beyond just the username and password – to gain account access. 2SV helps protect you by making it more difficult for someone else to sign in to your account. Even if someone else finds your password, they'll be stopped if they don't have access to your email info. This is also why it's important to use different passwords for all your accounts.
Cons vs. Pros
Cons:
Increased login time – Users must go through an extra step to login into an application, adding time to the login process.
Pros:
Improved security – 2SV reinforces security by making it more difficult for intruders to gain unauthorized access, even if a perpetrator gets past the first authentication step.
Increased productivity & flexibility – enables businesses and public institutions to be more productive and efficient, allowing employees to perform remote tasks with far less security concerns.
Recommendations:
1. Email used should be company emails.
2. Set up a short expiry time for token to ensure that the token is required at every login.
3. Individual email addresses should be used instead of group email addresses. This is to ensure that only the specific user will receive the secret key.
How to Setup 2SV in HRplus?
Two Step Verification can be turned on via Security>>Password Config however, there are a few prerequisites which must be conducted prior to turning on 2SV.
Step 1: Ensure email server is setup
Step 2: Users are required to have an email address associated with their User ID
Step 1: Ensure email server is setup
Navigation: System Configurations>>Company Parameters>> System Constants>>Mail Server
The following connection details can be used to configure the email server.
If you have your own mail server information complete the form below and save the record with the saved icon.
If you are required to use our mail server settings, please contact us at [email protected].
After the configuration is complete, it is important to test that the users can receive emails. Enter an email address in the section "Test Email Address" and select the option "Send Test Email". You will get a prompt indicating that an email was successfully sent. Check your inbox to confirm that the test email was received.
Step 2: Users are required to have an email address associated with their User ID
Navigation: Security>>User Administration>>Search for User ID
Add or edit email address if same is missing
Ensure that all employees have a valid email address.
The user Email address is extremely important as turning 2SV on will prompt a PIN to be sent to the user’s email address. Failing to include the user’s email address will lock the user out of the application as there will be no way for the user to receive the PIN.
Step 3: Toggle 2SV On
Navigation: Security>>Password Config>>Two Factor Authentication
The System Admin is the only user with access to the Security Module and they are responsible for turning 2SV on. To do so, the ‘yes’ toggle must be selected, then submit the form to save the changes. The value can also be changed to the number of minutes a user will be able to log back into the application without requiring a PIN.
Turn off 2SV
You can turn off this option by simply selecting the option "No" in the configuration
For additional information on how to log in using this feature, please consult the article How to Login Using 2 Factor Authentication?
0 Comments
Add your comment