Additional Login Security for Hosted Application Users
We now offer 2 Factor Authentication (2FA), sometimes referred to as 2 Step Verification (2SV), as an additional security measure to our hosted application customers when logging into the Myp11D portal.
Customers may already use this on other systems as it adds ‘something you have’ to the authentication process. Using a smartphone app (either iOS or Android), you will be able to further secure your account details by adding the requirement to enter a passcode each time (or day) you login.
The software has been engineered using industry standard technology, meaning that standard authenticator apps should work (we have tested this with some well known apps - Google Authenticator, Microsoft Authenticator and Authy).
If your organisation wants to have 2 Factor Authentication turned on for your account, your system administrator should get in touch with the P11D Organiser support team via email (firstname.lastname@example.org) in the first instance, and then use the following instructions to set up your own personal additional security layer.
Once this option has been enabled for your organisation, users will see the additional menu item in the 'hamburger menu' in the upper right once logged in - Manage Two Factor Authentication.
Selecting this link will show the following screen - simply click the Enable Two Factor Authentication button.
It will then show the following screen
This will immediately show the Two Factor Authentication screen, allowing you to set up your app. To set up the authentication key on your smartphone follow the instructions in the dialogue box.
Should you ever need to view this code again (say if you have a new phone), use the Show Two Factor Code button on the setup screen. and repeat the process. You should now log out of MyP11D.com to complete the process.
Logging in with 2FA Turned On
Next time you log into MyP11D.com, 2FA will now be fully functioning for this user. Navigate to the usual login page (www.myp11d.com) - enter your username and password as normal, and you will then be presented with the 2FA challenge screen.
Enter the time-bound authentication code as generated by your chosen authenticator app - If it is validated correctly, you will be logged in and see the Home Page as normal.
Should you so choose, you can check the Trust This Browser for 24 hours button, which will mean you are not asked for the 2FA code again that day.
For security reasons, you can only disable 2FA once you are logged into your account (if you are locked out, please get your system administrator to contact the support team). From the hamburger menu, select Manage Two Factor Authentication.
Then from the next screen, click on the Disable Two Factor Authentication button.
If this is successful, you will see the dialogue below: