Multi-Factor Authentication
Enabling Multi-Factor Authentication
Multi-Factor Authentication (MFA) is a security feature implemented in Capture Visual Media Management system to enhance the protection of user accounts and assets. It adds an additional layer of verification beyond just a username and password, making it more difficult for unauthorised individuals to gain access to the system.
To enable MFA back-office system administrator needs to go to:
Classic Capture: Admin > General > System Settings
-
Navigate to General > Security Settings
New Generation Capture:
Settings > General > System Settings
-
Navigate to General > Security Settings
Tick Multi-factor authentication (MFA) box. This will enable MFA across all the back-offices system and will prompt the MFA when the back-office users are trying to login.
When the user attempts to log into the system their need to provide username and password as the first factor of authentication.
Once the credentials are entered, the system will then require an additional factor, such as a unique code generated by an email. The code will be delivered to the registered email and will remain valid for 15 minutes.
When the email code expires, it means that the time window for entering the code has lapsed, and the code is no longer valid for authentication. The user attempting to log in receives a notification message indicating that the email code has expired.
The user is given the option to request a new email code to complete the MFA process. This is initiated by clicking on a button provided in the expiration message. Upon requesting a new code, the system generates a new unique code and sends it to the user's registered email address.
Invalid Code
When the user enters an invalid code, the system provides a message informing about the code and provides a countdown to how many times the invalid account can be entered.
If the code has been entered incorrect three times the system triggers a security measure that results in the account getting temporary locked. This action is taken to protect the account from unauthorised access attempts and potential brute-force attacks.
This means the user is temporarily denied access to their account and the associated digital assets. Capture Visual Media Management system will notify the user about the account being locked with an on-screen message.
To regain access to the account, the user needs to go through an account recovery process and contact support.
The support team may require the user to provide additional information to verify their identity. This could involve answering security questions, providing personal details, or providing specific documentation, depending on your system’s policies.
Once the user's identity has been confirmed, the support team takes the necessary steps to unlock the account, allowing the user to regain access to their system account and associated digital assets.
Unlocking User Accounts
To unlock user’s account after multiple verification failures, system administrator needs to go to the users’ profile in the back-office system.
This can be found in:
Classic Capture: Admin > General > Security Settings
New Generation Capture: Settings > General > Security Settings
Navigate to the ‘Account locked’ section and untick the button. To ensure that the account has been unlocked please ‘Submit’ the changes on the page.
Summary
By incorporating Multi-Factor Authentication into Capture Visual Media Management systems, organisations can significantly reduce the risk of unauthorised access, data breaches, and unauthorised modification or distribution of digital assets.
It provides an additional layer of protection beyond traditional username and password combinations, making it more challenging for attackers to compromise user accounts.
Comments
0 comments
Article is closed for comments.