Multi-Factor Authentication (MFA) Set-up

Multi-Factor Authentication (MFA) Set-up

About

ISO 27001 is the internationally recognised standard of managing information security in an organisation.  Our payroll software has been assessed and certified as meeting the requirements of ISO 27001 of our Information Security Management System (ISMS).  In this section, extra security measures that can be implemented in your payroll environment, are shared.

Multi-Factor Authentication (MFA) is a security system that requires more than one method of authentication from independent categories of credentials to verify an identity. Besides providing an e-mail address and password, MFA will provide a second method of authentication when logging onto the system.

Edition

This feature is available on Lite, Premier and Master.

Google Authenticator

Google Authenticator is a free MFA application that enables the user to use a time sensitive code to verify an identity.



An employee will need the following to use Google Authenticator:
  1. A smartphone
  2. Google Authenticator app installed from the smartphone’s app store

Enforcing MFA

A company can select MFA as a mandatory requirement for all employees.  Three options are available:
  1. Google Authenticator with e-mail fall back
  2. Google Authenticator with e-mail or SMS fall back
  3. SMS Authentication with e-mail fall back

Once one of the options above has been activated, a prompt to set-up MFA will appear when a user logs onto the system. Should the prompt be dismissed the first three times, the user will not be able to login without completing the set-up.  To enforce MFA, please contact our Support Centre to advise and assist.

E-mail and/or SMS fall back

Once set-up, should the user enter three incorrect One Time Pins (OTPs) obtained from Google Authenticator, the OTP will be e-mailed to the e-mail address or sent via SMS to the cell phone number confirmed during the set-up. If five incorrect attempts in total are made, the account will be locked. The account will have to be activated by the Company Level User.

Important Comment

Tip
By default, the ESS user can set-up Google Authenticator as an optional, using e-mail as fall back.


You may also be interested in


    • Related Articles

    • An employee level user got a new phone, how do they setup the Multifactor Authentication (MFA) on the new phone?

      The employee will first need to log in to their profile, to request the Authentication code be sent by either email or SMS. Log in to PaySpace and opt for the option "Send Email" or "Send SMS" to receive the OTP to log in. The user will then receive ...
    • How do I remove the Multifactor Authentication (MFA) setting on user profiles?

      The Multifactor Authentication (MFA) can only be removed on Burea level. Contact support@payspace.com for further assistance.
    • Single Sign On (SSO)

      About ISO 27001 is the internationally recognised standard of managing information security in an organisation. Our PaySpace has been assessed and certified as meeting the requirements of ISO 27001 of our Information Security Management System ...
    • Is PaySpace ISO 27001 certified?

      Security is critical for any organisation. PaySpace’s cloud security offering goes far beyond what most companies have been able to achieve for themselves. Security is a multidimensional business imperative that demands to be considered at every ...
    • Medical Aid Scheme Set-up

      About A variety of Medical Aid Schemes are available to choose from on the Medical Aid Setup Screen. You can select and configure the relevant scheme according to the company’s requirements. The Medical Aid Scheme needs to be configured before the ...