# Multi-Factor Authentication
## Overview
Enabling Multi-Factor Authentication (MFA) is an important security measure that SaaS companies can implement to protect their users' accounts from unauthorized access. MFA adds an extra layer of security by requiring users to provide a second form of identification, in addition to their username and password, before accessing their account. It is required to have MFA enabled for all accounts.
## Verify Your Account
Regardless of how you sign in (email/password or social login), you will be required to provide a one-time code to verify your account. This has replaced the previous email method.
{% tabs %}
{% tab title="Initial Implementation" %}
During the initial setup, you will need to scan the QR code using your preferred authenticator app (ex. Authy, Duo, etc.). Once selected, apply the one-time code to the respective field.
{% endtab %}
{% tab title="One-Time Code Input" %}
Moving forward, when MFA is required, you will be prompted to apply the temporary code found in your authenticator app.
{% endtab %}
{% endtabs %}
**Once MFA is enabled and the grace period is passed:**
* Client users must go through MFA verification upon initial login & on a recurring basis from a configurable setting in each account.
* By default, users will need to verify once every 30 days. This can be changed to a more frequent basis upon request, including on each login.
## **First Time Logins:**
Set up MFA on your first sign-in to the dashboard. It takes just 2 minutes using any authenticator app on your phone.
* If you don’t have an authenticator app, **download the Google Authenticator App:**
* [iOS Download](https://tracking.satisfilabs.com/?ref=g8IAAJxijRLOhfndxms8heo2qBGIvNfvAQAAAPAGiPZb3lfx6TdYR4O_KrxBM4jthUYWSIKFsXs8vEZhdDtmH-o8dfdZ86hFqoXeOW3kzf5-Ps-UB664nti3FY5f1VPY1yBmyBg6HXnCMdDCd90yxs2keo76hydQpmssTxw-qAVdGqqqKAeUi4xxmaWpdYvIs2g7AztDVDyyKyw0t-WqF3GWX2zfsGR93KUKBzPxRcRaHegWl4Nfo4UxwmOAjE0fvJFGyivM76ksT-MiCdbVByxTxCBSFnBp0mzYsA)
* [Android Download](https://tracking.satisfilabs.com/?ref=g8IAANyMUX7OvGNUt3uI06_sgATfN1c-AQAAAPAGiPZb3lfx6TdYR4O_KrxBM4jthUYWSIKFsXs8vEZhdDtmH-o8dfdZ86hFqoXeOW3kzf5-Ps-UB664nti3FY68Pbxa_jHt9_XfsnSEvILQAggJZ3GmSOU5x4ktx_W-vtIlsKPz0sgslg2bEDGvZE4cTvmq7oGNVo820BLtmPxBEAikNFMUrl4j8h0DhFZAdHyBZXxsGHyhOlcQ5GLFQyXWxUDGrdOeiczaafH4B_kQXXLuOytbTPoG6zNwcI55QFc0dWOQNCM75pWICaruT0tl0a6NEvJyjXNel7QOC5KREda5KyadL_4w-7u_Kq8gyY0uiqFXnFQEEGx9Vet9zuA)
* Once the app is downloaded, click (+) in the bottom right corner
* Scan the QR code to add Satisfi Labs to your list of accounts.
## **Additional Notes**
* Users will have up to 5 attempts once the MFA code is sent to enter their passcode correctly. After the 5th attempt, their account will be locked. Users with locked accounts will be prompted to ask an **administrator** for assistance.
* The MFA is specific to each client account + unique device. Logging in on incognito, phone, new device, etc, will result in verification needing to be resent.
* Satisfi Administrators will adhere to the client account settings. For example, if a client account is set to an MFA expiration of daily due to their company's policies, Satisfi Administrators will also go through the verification each day when reviewing the client account.
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.satisfilabs.com/resource-center/ai-agent-engine/user-management/multi-factor-authentication.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.