Enrollment Preferences Policy
With the introduction of the Enrollment Preferences policy, the administrators can use the Enrollment Preferences tab under the Authentication menu to allow the first-time users to enroll their mobile or landline numbers to enable additional multi factor authentication (MFA) methods such as SMS OTP or voice OTP for the user after providing their passwords.
- Mobile Phone : Enable this option to associate your mobile number to receive the OTP via SMS during authentication.
- Landline : Enable this option to receive the OTP to the configured number through a voice call. By adopting this feature, users can associate appropriate authenticators for securely accessing the 1Kosmos application.
Enabling Multi Factor Authentication (MFA) for First-Time Login Users
To enable the additional MFA factors for the first-time login users, follow these steps:
- Navigate to the AdminX interface.
- Go to Authentication > Enrollment Preferences. The Enrollment Preferences page is displayed.
- Turn the First time login enrollment factors slider ON.
- In the Initial Sign in MFA Enrollment policy section, enable the appropriate authenticators such as Mobile phone and Landline.
- Click Save.
Enrolling User’s Details through MFA
Once the community administrator has enabled the Enrollment Preferences setting in the AdminX interface, the first-time login users can associate their mobile or landline details to seamlessly login into AdminX.
Prerequisites:
Following are the prerequisites to be possessed for a seamless login:
- The user must be logging into AdminX for the first time but must be part of one of the preferred user stores.
- Make sure that the administrator has enabled the First time login enrollment factors setting under the Enrollment Preferences tab followed by the enablement of at least one authenticator such as Mobile or Landline.
To enroll the MFA, follow these steps:
-
Open the AdminX URL.
-
Navigate to the USERNAME tab to specify the username and click Next.
-
Enter your password and click Next.
-
In the Choose an authentication method screen, click Setup MFA.
-
In the Setup multifactor authentication screen, select either Setup SMS Authentication or Setup Voice Call Authentication as shown below:
-
If you select the Setup SMS Authentication option, the Enroll a mobile number screen is displayed as shown below; Specify your mobile number by selecting the appropriate country code and click Next.
-
If you select the Setup Voice Call Authentication option, the Enroll a landline number screen appears; Specify your landline number by selecting the appropriate country code and click Next.
-
-
In the Enter your verification code screen, enter the code received in your mobile or through the voice call.
After entering the code, the screen notifies the user that the phone number has been to the profile. The following screenshot illustrates the same: