Home / Identity Administration / People / Current: Setting Multi-Factor Authentication on People
When your policy requires users have a more secure login experience, EmpowerID's multi-factor authentication (MFA) model gives you multiple options for applying MFA to people. Depending on your policy, you can require users to perform MFA against a wide variety of MFA Types or simply allow users to decide for themselves whether they want to protect their accounts with MFA.
| Info |
|---|
If the Password Manager Policy assigned to users has one or more required MFA Types assigned to it, users must use those types in addition to their regular logon methods. Setting an MFA Type directly on a person only has effect when that MFA Type is not required on their Password Manager Policy. |
To set multi-factor authentication on people
- From On the navigation sidebar, type the name of the person for navbar, expand Identity Administration and select People.
- Search for the person to whom you want to set require MFA in the Person search field and then click the tile EmpowerID Login link for that person.
This directs you to the View page for that person. View pages allow you to view information about a selected resource and manage that resource as is appropriate. - From the View page, click the Multifactor Authentication accordion to expand it and then click the Add (+) button in the grid.
In the dialog that appears, select the desired MFA Type from the Type drop-down, specify the Priority and then click Save.
Tip MFA Types only appear in the drop-down if they are added to the person's Password Manager Policy. For more information, see Assigning MFA Types to Password Manager Policies.
Once EmpowerID processes the request, you should see a record for the MFA Type in the grid. As indicated by the record, the selected MFA Type is now required for the person. The additional factor must be completed by the user before access is granted.
...