MFA - New Generation Capture

  • Updated

Multi-Factor Authentication

Enabling Multi-Factor Authentication

Multi-Factor Authentication (MFA) is a security feature implemented in Capture Visual Media Management system to enhance the protection of user accounts and assets. It adds an additional layer of verification beyond just a username and password, making it more difficult for unauthorised individuals to gain access to the system.

 

To enable MFA back-office system administrator needs to go to:

Classic Capture: Admin > General > System Settings

  • Navigate to General > Security Settings

New Generation Capture:

Settings > General > System Settings

  • Navigate to General > Security Settings

 

Tick Multi-factor authentication (MFA) box. This will enable MFA across all the back-offices system and will prompt the MFA when the back-office users are trying to login.

Screenshot

 

When the user attempts to log into the system their need to provide username and password as the first factor of authentication.

Screenshot

 

Once the credentials are entered, the system will then require an additional factor, such as a unique code generated by an email. The code will be delivered to the registered email and will remain valid for 15 minutes.

Screenshot

 

When the email code expires, it means that the time window for entering the code has lapsed, and the code is no longer valid for authentication. The user attempting to log in receives a notification message indicating that the email code has expired.

Screenshot

The user is given the option to request a new email code to complete the MFA process. This is initiated by clicking on a button provided in the expiration message. Upon requesting a new code, the system generates a new unique code and sends it to the user's registered email address.

 

Invalid Code

When the user enters an invalid code, the system provides a message informing about the code and provides a countdown to how many times the invalid account can be entered.

Screenshot

 

If the code has been entered incorrect three times the system triggers a security measure that results in the account getting temporary locked. This action is taken to protect the account from unauthorised access attempts and potential brute-force attacks.

 

Screenshot-2023-07-07-at-14.32.24.jpg

This means the user is temporarily denied access to their account and the associated digital assets. Capture Visual Media Management system will notify the user about the account being locked with an on-screen message.

 

To regain access to the account, the user needs to go through an account recovery process and contact support.

 

The support team may require the user to provide additional information to verify their identity. This could involve answering security questions, providing personal details, or providing specific documentation, depending on your system’s policies.

 

Once the user's identity has been confirmed, the support team takes the necessary steps to unlock the account, allowing the user to regain access to their system account and associated digital assets.

 

Unlocking User Accounts

To unlock user’s account after multiple verification failures, system administrator needs to go to the users’ profile in the back-office system.

 

This can be found in:

Classic Capture: Admin > General > Security Settings

New Generation Capture: Settings > General > Security Settings

 

Navigate to the ‘Account locked’ section and untick the button. To ensure that the account has been unlocked please ‘Submit’ the changes on the page.

 

Screenshot

 

Summary

By incorporating Multi-Factor Authentication into Capture Visual Media Management systems, organisations can significantly reduce the risk of unauthorised access, data breaches, and unauthorised modification or distribution of digital assets.

 

It provides an additional layer of protection beyond traditional username and password combinations, making it more challenging for attackers to compromise user accounts.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.