Setting up two-factor Authentication

Article author
James
  • Updated

What does the article cover?


This article covers the following:

What is two-factor authentication?


Two-factor authentication adds an additional layer of security to your chamber. If enabled, each user will require something they know - their username and password - as well as something they possess - their smartphone - to log in to Meddbase. This makes it more difficult for an impostor to access your system.

If enabled, each user will be required to enter a six-digit code in addition to their user name and password to log in.

 

Linking your Meddbase account to your authenticator application


Meddbase works with the authenticator applications to provide the six-digit code required to log in. Follow the links below for instructions to install one of the authenticator apps:

Once that's complete, log in to Meddbase. Then:

  1. From the Start Page, click Settings, then click 'Setup two factor authentication'
  2. Use the app to scan the barcode that appears on screen
  3. Set the six-digit code that appears on your phone as the confirmation code
  4. Click 'Enable'.

 

 

Enabling and disabling two-factor authentication


Two-factor authentication must be enabled within Meddbase to come into effect. To enable/disable two-factor authentication:

  1. Go to Admin > Security Policy page
  2. Click the Password Policy certificate
  3. Click the checkbox Enable for all to enable/disable two-factor authentication
  4. Click 'Save'.

If 'Only required for external access' is checked, the code will only be required from IP addresses Meddbase considers external.

Security_Policy_screen_-_Showing_Password_Policy_with_enable_for_all_identified.png

If only certain roles should be forced to use the 2 Factor Authentication feature, those roles can be added to the 'Sensitive roles' list.

Logging in using two-factor authentication


To log in, you must have first linked your smartphone to your Meddbase account. Once that's all set up:

  1. Go to our login page
  2. Enter your username and password
  3. Open your authenticator app on your smartphone 
  4. Enter the six-digit code,
  5. Then press Login

If you don't have your smartphone at hand, ask an administrator to reset your code. This means that you won't need to enter a code the next time you log in, but you will need to re-link your smartphone to your Meddbase account once you have access.

 

Review date


This article was last updated on 22 July 2021 in the context of Meddbase version 1.245.0.32355.