# Multi-Factor Authentication App (MFA)

To enhance the security of your account and proprietary data, we've implemented a mandatory Multi-Factor Authentication (MFA) system. MFA is an important measure that SaaS companies implement to protect their users' accounts from unauthorized access. It adds an extra layer of security at sign-in by requiring users who do not have an active session to verify their identity by entering a one-time code delivered via authenticator app or email.

### Signing in with MFA

Start by following these steps:\
\
1\. Navigate to[ https://dashboard.satis.fi/](https://dashboard.satis.fi/) and log in using your username and password, or social login.<br>

<figure><img src="https://167344003-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FsxN9AGLZMIc5C8dx3zU7%2Fuploads%2FluwM4oEqMSqwfGDsf6Sn%2Fimage.png?alt=media&#x26;token=bea91c87-7901-47ff-ab1e-6f3092d2d6d0" alt="" width="331"><figcaption></figcaption></figure>

2. If you have not already registered for MFA via authenticator app, **you will be prompted to retrieve your one-time code from your email**. From this screen you will have the option to go straight to the dashboard, or first register via authenticator app for enhanced security.

<figure><img src="https://167344003-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FsxN9AGLZMIc5C8dx3zU7%2Fuploads%2FKTtApt9NIv66H1R21pmV%2Fimage%20(22).png?alt=media&#x26;token=dce3d944-cacd-49a3-bd9a-20093f35b255" alt=""><figcaption></figcaption></figure>

3. During MFA set-up via authenticator app, you will need to scan the QR code using your preferred authenticator app (ex. Authy, Duo, Google Authenticator etc.) or the built-in iOS passwords app.

<figure><img src="https://167344003-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FsxN9AGLZMIc5C8dx3zU7%2Fuploads%2FIylCDX58Ki9oVoyC54td%2Fimage.png?alt=media&#x26;token=6d22da3d-54ae-4735-ae18-bbd0d31b9bb4" alt=""><figcaption></figcaption></figure>

4. If you don’t already have one, download **Google Authenticator** from below:

* [iOS Download](https://apps.apple.com/us/app/google-authenticator/id388497605)
* [Android Download](https://play.google.com/store/apps/details/Google_Authenticator?id=com.google.android.apps.authenticator2\&hl=en_NZ\&pli=1)<br>

5. Once the app is downloaded, open the app and click (+) in the bottom right corner. Scan the QR code to add Satisfi Labs to your list of accounts. Then it will prompt you to enter the 6-digit code as shown below.&#x20;

<figure><img src="https://167344003-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FsxN9AGLZMIc5C8dx3zU7%2Fuploads%2FVqBzaL2UEjWaQxHM9tzG%2Fimage%20(25).png?alt=media&#x26;token=b3d842c4-c245-4b60-bff4-67baee0192e5" alt=""><figcaption></figcaption></figure>

6. After you’ve registered, MFA via authenticator app will become your default sign-in method, but you will still have the option to instead send a one-time code via email.\ <br>

   <figure><img src="https://167344003-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FsxN9AGLZMIc5C8dx3zU7%2Fuploads%2FKO1Xwr2Znw3mxFVTKzqb%2Fimage.png?alt=media&#x26;token=8f90a67c-4dae-4a23-ab57-e30f55713ac1" alt=""><figcaption></figcaption></figure>

#### Additional Notes

* One-time codes sent via email will expire after 5 minutes.
* MFA verified sessions are specific to each user + unique device. Logging in on incognito, phone, new device, etc, will result in your identity needing to be reverified.
* By default, users will need to re-verify once every 30 days. However, this can be modified to meet your company’s security requirements.
* Satisfi Administrators will adhere to the client account settings. For example, if a client account is configured for MFA verified sessions to expire daily, Satisfi Administrators will also need to reverify each day when signing-in to that client’s account.

### **Need Assistance?**

If you are having issues signing in via authenticator app, don’t worry. Please reach out to us at **<support@satisfilabs.com>**, and we’ll reset your MFA so you can restart the setup process