Your LMS can be configured to require Multifactor Authentication (MFA). MFA is a security mechanism that requires users to provide two credentials to authenticate their identity at login before they are granted access to the LMS.
You can enable one or more authentication options: 1) Email, 2) Text, and 3) QR Code (Use a 3rdparty authenticator app. For example, Microsoft Authenticator or Google Authenticator). Once configured for your organization, it can be enabled/disabled per user.
Currently, you can optionally select the users that will require MFA. Once MFA has been enabled, you will have the option to enable it for specific users. At some point in the future, MFA may be required in order to login to the LMS for all users. This is an additional security effort to ensure that your network cannot be compromised or exploited via the LMS.
User Impersonation allows Master and Admin administrators to log in as other employees. Typically, user impersonation is helpful when troubleshooting user questions.
Administrators who have been set up as an impersonator, are also required to set up with Multifactor Authentication (MFA), which requires them to present two pieces of “evidence” before they are granted access to the system.
As a best practice, you should limit the number of administrators that can have access to this feature.
Please refer to the Security: User Impersonation article to learn more about this feature and how to set it up for certain administrators.
STEP 1: REQUEST MULTI-FACTOR AUTHENTICATION
Multi-Factor Authentication must be enabled by our support team. Please contact email@example.com to ask them to enable MFA for your company.
Be sure to include the MFA option(s) you want your user to be able to select from email, text, QRcode. You may select any or all three options.
If you plan to enable MFA because you want to use the User Impersonation feature, that feature must be enabled by a support representative as well. Please include this request in the same request to enable MFA.
Once the support team has enabled MFA, continue to Step 2 to enable MFA for selected users.
STEP 2: ENABLE MFA PER USER
Follow these steps to optionally enable users that you want to require they use Multi-Factor Authentication.
Note: Any administrator that is allowed to Impersonate users must have MFA enabled.
- Click the Administration tab.
- Click Organization, then Users from the left menu bar.
- Search and locate the desired user.
- Click the Edit icon to the left of the desired user.
- Scroll down to the bottom of the optional fields on the Edit User screen.
- Require MFA: Check the Require MFA checkbox
- Click the Save button.
STEP 3: LOG IN USING MULTI-FACTOR AUTHENTICATION
Please refer to the Users: Log In and Log Out article to learn how to log into the LMS using Multi-Factor Authentication.