Multi-factor Authentication in SecureCloud

SecureCloud generates encryption keys and provides full key lifecycle management. Any one with the Security Administrator rolehas the privilege to download encryption keys from the SecureCloud server. In this release, SecureCloud can determine if the user logging on is indeed the account owner. MFA mitigates the risk of an account being hacked.

SecureCloud applies MFA on a role-basis and implements two-factor authentication (or two-step verification), which implements Time-based One-time Password (TOTP) algorithm and requires account owners to provide the following:

MFA in SecureCloud

Regulatory Definition	SecureCloud
Something the account owner knows	Account name and password
Something the account owner has	A code generated via Google Authenticator using a supported mobile device

By default, MFA for available user accounts is disabled. Only users with the Account Administrator role can manually change the status of and apply MFA to other roles through the Roles tab of User Management page.

When MFA is enabled for a specific role, accounts with the same role will need to go through the MFA activation process to access the SecureCloud web console.

Requirements

Take note of the following required items to successfully setup MFA in SecureCloud:

Mobile phone	Android phones with version 2.1 or later iPhone 3G, 3GS, 4, or 4S with iOS version 3.1.3 or later BlackBerry phones with BlackBerry OS 4.5 to 6.0
App	Google Authenticator On Android: version 2.21 or later On iOS: version 1.1.4.757 or later QR code scanner (optional)

$('#title').html($('meta[name=description]').attr('content'));