Two factor Authentication (2FA) or Multi-factor Authentication (MFA) provides an added layer of security to Folio. Users will need to use their Folio password and a code generated by the Authenticator app to sign in to Folio.
Folio supports two-factor authentication (2FA) in two ways:
- Authenticator App based: In order to use this feature, your users will need to have an Authenticator App such as Google Authenticator or Microsoft Authenticator installed on their phones.
- Email based 2FA: Users will receive a unique authentication code in their email.
To turn this feature on, click on the Admin Gear Wheel in the top-right of the screen to go to the Admin section, then select Sign On and Security.
Select Edit and under 'Require two-factor Authentication' click on Authenticator App for App based 2FA and Email for Email based 2FA. Click on Not Required to turn off 2FA.
Note: This option will not appear if you have any SSO options selected. You may only have one 2FA option selected at any given time. The 2FA feature in Folio only works with the Folio Sign In and not with Single Sign On through a third party Identity Provider.
Resetting Two-factor Authentication
If a user is unable to login becauase they have lost access to their authenticator device you can reset the 2FA authenticaton from the users screen.
A Super User or Admin must click on the Admin Gear Wheel and then click on Users and select the appropriate User and under the Tools menu select Remove two-factor authentication:
The next time the User signs in to Folio they will need to register Two-Factor Authentication with the steps listed above.