Multi-factor authentication (MFA)

Multi-factor authentication (MFA) or Two-factor authentication (2FA) provides an extra layer of security by requiring two distinct forms of identity verification to access services.

As users often resort to simple, repetitive passwords across multiple accounts, this practice increases vulnerability to cyber attacks. Even if a strong, unique password is utilized, falling prey to phishing schemes can lead to unauthorized access, highlighting the risk of using the same password across different services.

Implementing MFA enhances security by combining something you know (like a password) with something you have (such as a code sent to your smartphone) or something you are (biometric verification). This added verification step acts as a barrier for attackers even if they manage to obtain a password.

While no security method is foolproof, MFA significantly reduces the likelihood of unauthorized access. 

Hint Read more about multi-factor authentication in article Two-factor authentication: the key to better security for your accounts.

In PANTHEON Web, the second step for MFA is sending a token to user's selected phone number. Funcionality allows you to set validity and length of MFA tokens. User's phone number must be set as MFA SMS Authentication type in User data.

Warning Tokens can be sent to users only if eMessaging service is activated and a sufficient quantity of messages is avaliable within the package. You can order eMessaging service on our User Site. Additional information about the service can be found on Datalab's website.

Hint For technical information regarding setting up and using MFA read these chapters: Security User data MFA Login Logon

In these next chapters we prepared use cases on how to enable and log in to PANTHEON Web using MFA.