Configuring Multi-Factor Communication Options
EmpowerID supports several one-time password delivery types, also known as Multi-Factor Communication options or Communication Types, from which users can choose for receiving verification codes when performing multi-factor authentication. Communication options include email, SMS and voice call. When users enroll for—and subsequently use—a multi-factor authentication method that requires verification codes, they select their preferred multi-factor communication option for receiving the code. Initially, users select one option, but can later add any other supported options to their profile pages. As an administrator you can configure which communication types are available by disabling those your organization chooses to not support.
SMS and voice call require your organization have a Twilio account that has been integrated with EmpowerID. For information on integrating Twilio with EmpowerID, see Integrating Twilio.
To configure multi-factor communication options
- In the navigation sidebar of the EmpowerID Web interface, expand Admin, then SSO Connections, and click Communication Types.
Each type is enabled by default. - Click the Edit button for any Communication Type you want to disable. Edit buttons have the Pencil icon.
In the Enable or Disable pane that appears, deselect Enabled and then click Save.
If you disable a communication type after users have selected that type as their preferred method for delivery of verification codes, users must update their multi-factor communication options to reflect your policy. For information, see Editing Your Multi-factor Communication Options in the User Guide. When updating options, users only see the options you have enabled.
To support multi-factor authentication, you must have at least one communication type enabled.- Recycle the EmpowerID App Pools to ensure that your changes take effect without disrupting the current workflow of your users.
- In the navigation sidebar, expand IT Shop and click Workflows.
- On the Workflows page, click Recycle EmpowerID App Pools.
Silent Errors with Twilio
You will see silent errors in the event log under the following scenarios:
- The phone number field requires a country code and errors silently if one is not provided.
- If the phone number is invalid the page fails silently.
- If a person does not have a phone number, the page shows successful when it is not.