Changes

Template:March2023Upgrade

309 bytes added, 16:06, 27 February 2023
m
Multi-Factor Authentication Enabled by Default
Multi-factor authentication (MFA) using verification codes sent by email will be enabled for all systems to improve security. If you have already enabled MFA in your SmartSimple Cloud system and have assigned roles to a single-use verification code sent by email, this enhancement will NOT change your existing settings. You may change your MFA preferences after the upgrade but we recommend you adjust your settings prior to the upgrade. If you did not set up MFA prior to the upgrade, the 'Everyone' role will be added to the setting called '''Roles with Verification Code via SMS and Email'''.
[[File:144811-MFA Everyone Role.png|thumb|none|800px|Systems that do not have MFA set up will automatically have the 'Everyone' role added to the single-use verification code setting.]]
 
Time-based One-Time Password (TOTP) settings will NOT be affected.
<u>'''Note:'''</u> Backup environments will be allowed to send out MFA emails. If your backup environment is not sending out emails check that you have set up a default email at '''Menu Icon''' > '''Global Settings''' > '''Communications''' > '''Email Options and Security''' > Toggle on '''Enable Default From Address'''. Typically, you would enter something like donotreply@smartsimple.com. If you are using SMTP relay with an IP restriction for sending emails, ensure the IP of your backup environment is in your IP list. If you are using Single sign-on (SSO), you may opt to bypass MFA by going to '''Global Settings''' > '''Integrations''' tab > '''Single Sign-On''' > Edit a configuration then under the Authentication section > Toggle on '''Bypass Multi-Factor Authentication (MFA) when logging in with Single Sign-On (SSO)'''.
<!-- 144811 - Apply MFA to all systems -->
Smartstaff
2,363
edits