Skip to main content

Setting Up Multi-Factor Authentication (MFA)

Modalius Support

Multi-Factor Authentication (MFA) adds an extra layer of security to your Modalius account by requiring a second form of verification when you sign in. Even if someone obtains your password, they cannot access your account without the second factor.

Why MFA Matters

EDI platforms handle sensitive business data including shipment details, partner credentials, and trading agreements. MFA helps protect this data by ensuring that only authorized users can access your account, even if credentials are compromised.

Note: Your organization may require MFA for all users. If MFA is required, you will be prompted to set it up when you sign in. See Managing MFA for Your Organization for details on organization-level requirements.

Available MFA Methods

Modalius supports two MFA methods. You can choose the one that works best for you:

Method How It Works Best For
Email A 6-digit verification code is sent to your email address each time you sign in. Users who prefer simplicity and always have access to their email.
Authenticator App A time-based one-time password (TOTP) is generated by an app on your phone, such as Google Authenticator, Authy, or Microsoft Authenticator. Users who want faster sign-in and do not want to depend on email delivery.

Setting Up Email MFA

Email MFA sends a 6-digit code to your registered email address during sign-in.

  1. Go to your Profile page by clicking your avatar in the top-right corner of the screen.
  2. Find the Multi-Factor Authentication section and click the edit button.
  3. Select Email from the MFA Method dropdown.
  4. Click Initiate Setup. A verification code will be sent to your email address.
  5. Check your email for the 6-digit code and enter it in the verification fields.
  6. Click Verify Setup to complete the process.

Tip: The email verification code expires after 5 minutes. If the code expires, click Initiate Setup again to receive a new code.

Setting Up Authenticator App MFA

Authenticator App MFA uses a time-based one-time password (TOTP) generated by an app on your phone. Compatible apps include Google Authenticator, Authy, Microsoft Authenticator, and any other TOTP-compatible authenticator.

  1. Go to your Profile page by clicking your avatar in the top-right corner of the screen.
  2. Find the Multi-Factor Authentication section and click the edit button.
  3. Select Authenticator App from the MFA Method dropdown.
  4. Click Initiate Setup. A QR code and a setup key will be displayed.
  5. Open your authenticator app on your phone and scan the QR code. If you cannot scan the QR code, manually enter the setup key shown below it.
  6. Your authenticator app will display a 6-digit code that refreshes every 30 seconds. Enter the current code in the verification fields.
  7. Click Verify Setup to complete the process.

Backup Codes

When you set up Authenticator App MFA, Modalius generates 10 single-use backup codes. These codes allow you to sign in if you lose access to your authenticator app (for example, if your phone is lost or reset).

Important: Backup codes are shown only once, immediately after completing Authenticator App MFA setup. You will not be able to view them again.

Copy or write down your backup codes and store them in a safe location. Each code can only be used one time.

To use a backup code during sign-in:

  1. On the MFA verification screen, click I Lost Access to my Authenticator App.
  2. Enter one of your 8-digit backup codes.
  3. Click Continue to sign in. The code you used will be consumed and cannot be used again.

Tip: If you use all of your backup codes, you can generate new ones by re-setting up Authenticator App MFA from your Profile page. Select Setup Again to go through the setup process and receive 10 new backup codes.

Switching Between MFA Methods

You can change your MFA method at any time from your Profile page:

  1. Go to your Profile page.
  2. Click the edit button next to Multi-Factor Authentication.
  3. Select a different method from the dropdown and click Switch Method.
  4. Complete the verification process for the new method.

Your previous MFA configuration will be replaced with the new method. If you switch to Authenticator App, you will receive a new set of backup codes.

Disabling MFA

If your organization does not require MFA, you can disable it:

  1. Go to your Profile page.
  2. Click the edit button next to Multi-Factor Authentication.
  3. Select Disabled from the dropdown.
  4. Click Remove MFA to confirm.

Warning: If your organization requires MFA, the Disabled option will not be available. You can still switch between Email and Authenticator App methods.

Signing In with MFA

Once MFA is enabled, the sign-in process has an additional step:

  1. Enter your email and password as usual.
  2. You will be presented with a verification screen:
    • Email MFA: Check your email for the 6-digit code and enter it.
    • Authenticator App: Open your authenticator app and enter the current 6-digit code.
  3. Click Continue to complete sign-in.

Security: You have up to 5 attempts to enter the correct code before the verification session expires. If you exceed this limit, you will need to sign in again.

Additionally, a rate limit of 10 attempts per 60 seconds applies to prevent brute-force attacks.

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk