6 Multi-Factor Authentication
Multi-factor authentication (MFA), also referred to as two-factor authentication (2FA), is a security process that requires users to provide two or more separate forms of identification before granting access to the application. MFA enhances the security by adding an additional authentication layer beyond the standard username and password, making it more difficult for unauthorized individuals to access sensitive information. By default, MFA is disabled. It needs to be enabled to activate the options. In Convergence, MFA can be set up by using the following:
- Mobile Authenticator
- SMS
- Mail (secondary email address)
Note:
The multi-factor authentication session is valid for 4 minutes, SMS and Mail for 60 seconds and the OTP is valid for 30 seconds by default.For more information about:
- Securing your account using secondary email, see "How Do I Secure My Account Using a Secondary Email Address?"
- Logging into Convergence Using SMS or Mail as MFA, see "How Do I Use SMS or Mail as MFA for Logging into Convergence?"
- Logging into Convergence Using Mobile Authenticator as MFA, see "How Do I Use Mobile Authenticator as MFA for Logging into Convergence?"
About Using Mobile Authenticator as MFA for Logging into Convergence
This section describes information about using Mobile Authenticator as MFA for logging into Convergence.
Note:
Disable SSO if MFA feature is enabled.How Do I Register Mobile Authenticator as MFA for Logging into Convergence?
To register Mobile Authenticator as MFA for logging into Convergence:
- On your mobile, download the Mobile Authenticator app from the app store.
- Go to the Convergence login page.
- Enter your username and password.
- Click Sign In.
- In the Send Verification Code field, select Mobile Authenticator.
- Click Next.
- Click Register for Mobile Authenticator.
The Configure Mobile Application page appears.
Note:
If you have already registered your Mobile Authenticator, enter your OTP.For more information, see "How Do I Use Mobile Authenticator as MFA for Logging into Convergence?"
- Configure your Mobile Authenticator by performing the steps mentioned on the page.
- Click Close.
- Enter the six-digit code in the OTP field.
- Click Verify.
After successful verification, you will be redirected to the Convergence UI.
How Do I Use Mobile Authenticator as MFA for Logging into Convergence?
To log in to Convergence using Mobile Authenticator:
- On the Convergence login page, enter your username and password.
- Click Sign In.
- In the Send Verification Code field, select Mobile Authenticator.
- Click Next.
- Enter OTP.
- Click Verify.
After successful verification, you will be redirected to the Convergence UI.
Note:
The OTP is valid for 30 seconds.
About Using SMS or Mail as MFA for Logging into Convergence
This section describes information about using SMS or Mail as MFA for logging into Convergence.
For more information about securing your account using an email address, see "How Do I Secure My Account Using a Secondary Email Address?"
How Do I Use SMS or Mail as MFA for Logging into Convergence?
To log in to Convergence using MFA:
- On the Convergence log in page, enter your username and password.
- Click Sign In.
- In the Send Verification Code field, select one of the following from
the drop-down menu:
- SMS
- Click Send OTP.
Note:
In case the OTP expires, click Resend OTP. - Enter the OTP, received on your secondary email or mobile number.
- Click Verify.
After successful verification, you will be redirected to the Convergence UI.
About Resetting Your Password using MFA
This section describes information about resetting your password using MFA.
If you have forgotten your password, you can reset it. Password reset is protected by OTP verification using different services like SMS, Secondary email or Oracle Mobile Authenticator (OMA). If you want to reset your password using OMA, you need to register for OMA after logging in. Unregistered users cannot verify the OTP using Mobile Authenticator.
How Do I Reset My Password?
To generate a new password:
- On the Convergence login page, click Forgot Password.
Note: The password reset functionality is protected by One-Time Password (OTP).
- Enter your Username.
- Click Verify.
- After verifying your email address, select a two-factor authentication method from the available options, such as SMS, email, or a mobile authenticator, depending on the services enabled by your site administrator.
- Click Send OTP if you choose SMS or email. For the Mobile Authenticator, click
Next.
A One-Time Password (OTP) will be sent to your registered mobile number or configured secondary email ID. For mobile authenticator, the OTP will be displayed in your mobile authenticator app.
- Enter the OTP for verification.
Note:
In case the OTP expires, click Resend OTP. - Click Verify.
- In the Password field, enter new password.
- Click Change Password.
You have successfully reset your password.