What is Multi-Factor Authentication?
Multi-Factor Authentication (MFA) is when an account requires multiple layers of verification as an extra layer of security. Thus, using email and password will not grant access unless the additional layers of verification are also passed.
Why should I opt for MFA for my admins/employees?
Payroll and HR data is highly sensitive and should always be handled with the utmost care. Enforcing admins to require MFA means that you are reducing the risk of unauthorised people accessing their accounts.
Although you should always educate your staff on password hygiene and cybersecurity, enabling additional layers of authentication will always grant better security.
What Additional Layers of Authentication does Buddy provide?
Currently, when enabling MFA, users will be required to enter a 6-digit key through a phone Authenticator app. (Our recommended authenticators generate a new passcode every 30 seconds)
How Frequently will the MFA key be required?
Users will be asked upon each log-in to enter their MFA key. The log-in will also automatically expire within 8 hours, and hence require another MFA key.
I have enabled the MFA for my employees and decided I want to turn it off. What should I do?
When removing the requirement for MFA, only accounts who have not yet set up MFA will be able to log-in without it. For security purposes, you will have to contact Buddy's support to verify that this request is authentic and genuine should you like to remove the MFA on existing accounts.
An Employee has lost/broken their phone and cannot access their MFA key. Can we disable their MFA?
The administrators of the account can Reset An Employee's Multi-Factor Authentication (MFA) Code. This is done from the personal profile of the employee.
A new MFA setup will remain required unless the settings change for the whole company.