Summary

Multi-Factor Authentication (MFA) is a security process that requires users to verify their identity using multiple forms of authentication before gaining access to an account or system. This layered approach makes it significantly harder for cybercriminals to gain unauthorized access, even if one factor (like a password) is compromised.

MFA is essential in today’s digital landscape because passwords alone are often weak and vulnerable to attacks such as phishing, credential stuffing, and brute-force attempts. By implementing MFA, we can improve the security for our merchants accounts from unauthorized access while maintaining ease of use with modern authentication methods.

Processor

This will be enabled for use with the Portal first but will be expanded to be used with all logins into our system to increase security to sensitive information.

Brand Available
Adyen ✅ (End of March 2025)
Stripe ✅ (End of March 2025)

<aside> 💡

Note: MFA has been rolled out to internal users as a preliminary test of the system.

</aside>

Process

The MFA process will only ask for authentication once every 12 hours for a user ID. Once you have gone through the authentication process it will not ask for authentication again for 12 hours.

<aside> 💡

Note: Currently the MFA is set up on a voluntary basis for internal personnel only.

</aside>

To turn on the MFA follow the steps below:

Accessing your user profile.png

User Profile page.png

Once the MFA is set up, you will see a request just after you login to the Portal asking to use the MFA, App or SMS message. Select on one of them and it will request the code that is on your app or that was sent to your phone.

Login with MFA.png

Code screen.png