Hello there!

Need Help? We are right here!

Thanks for your Enquiry.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×

Contents

Overview

Install moADManagement

Admin Registration

Admin Dashboard

Role Management

Create New Role

Manage User Roles

Self Service Manager

Add a New Password Policy

How to Edit or Delete a Password Policy?

Configure Profile Mapping in AD Tools

Add Profile Fields in the User Profile

Password Filter

Restrict Blacklisted Passwords

Notification Gateways

Email Notification Gateway

SMS Notification Gateway

Multi-Factor Authentication

Setup Multi-Factor Authentication

Manage Alerts

Password Expiry Notification

Object Management

User Management

Add & Update User Accounts

Send Reminders to Users

Unlock User Accounts

Group Management

Add Group to Active Directory

OU Management

Add OU to Active Directory

Update OU in Active Directory

Configure Built-in MFA Methods

If miniOrange MFA is disabled, you can configure and use alternative MFA options from the Built-in MFA.

Note: Before switching authentication methods, ensure all users have the correct MFA settings applied to avoid login issues.

Steps to Configure Built-in MFA:

Navigate to Multi-Factor Authentication > Select MFA Provider.
In the Built-in MFA, you can enable any of the following MFA methods:

1. OTP via Email:

You will receive a 6–8 digit numeric key via email, which must be entered for authentication.

Note: Ensure your Email Notification Gateway is configured correctly.

If not configured or if changes are needed, click the Reconfigure button to set up or update the gateway settings.

2. OTP via SMS:

A 6–8 digit numeric OTP will be sent to your registered mobile number for authentication.

Note: Ensure your SMS Notification Gateway is properly configured.

Click the Reconfigure button if gateway settings need to be set up or modified.

3. TOTP (Time-Based One-Time Password):

Use any authenticator app such as Google Authenticator, miniOrange Authenticator, or similar apps to generate OTPs.

This method provides time-based, rotating OTPs that must be entered during login.

4. Security Questions:

Authenticate by answering knowledge-based security questions that only the user should know.

Suitable for environments that prefer fallback or non-device-based MFA options.

After enabling your desired MFA method(s), the system will apply them during user authentication as per your selected policy.

Built-in MFA Methods | Multi-Factor Authentication

Once you have selected and activated your preferred MFA methods, click the Enforce MFA Settings button to apply the settings.

Apply Builtin MFA Settings | Enforce MFA Method

After selecting your preferred MFA methods in the Built-in MFA, click on the Enforce MFA Settings button.
A configuration window will appear prompting you to choose where MFA should be enforced:

User Login:
Enabling this option will enforce MFA during every user login attempt.
User Profile Update:
Enabling this option will require users to complete MFA when making changes to their profile information.

After selecting the desired enforcement options, click the Save button to apply the changes.

Your selected MFA methods are now active and will be triggered based on the configured conditions.

User Experience After MFA Configuration:

Once all MFA policies are configured and saved:

Users will be able to see the configured MFA methods on their dashboard when they log in.
Each user must select and configure their preferred MFA method from the available options.

Note: To give users flexibility in choosing how they authenticate, it's recommended to enable multiple MFA methods such as, OTP via SMS, OTP via Email, security questions, TOTP (using an authenticator app).

This allows users to pick the method that best suits their convenience and environment, improving both usability and adoption.