You can set up Multi-Factor Authentication (MFA) for your application to ensure all users of your internal system verify their identities before they can sign in to Case IQ. MFA allows you to reduce security risk and protect your user's accounts, without administrative overhead. This article covers how administrators can turn on MFA for the application. To learn how to register your Case IQ account for MFA, see Set Up MFA for Your Account.

Before turning on MFA...

• Case IQ uses Time-Based One-Time Passwords (TOTPs) for MFA. Your organization must have an authenticator application, such as Google Authenticator or Cisco Duo, to use Case IQ's MFA. 
• MFA is only applicable for your users that log in with a username and password. Those logging in with Single Sign On (SSO) will not be able to set up MFA for their Case IQ accounts.
• If you turn on MFA, all internal users of your application must use MFA to log in to Case IQ. Portal users, hotline agents, and any external parties granted access to cases will not be able to use MFA.

Turn MFA On for your Application

To configure Multi-Factor Authentication (MFA):

1. Navigate to the Options page in Settings under the System tab.

2. Narrow down the options displayed in the grid by clicking the Search button and typing “MFA”.

3. Find the "internalMFA" option in the grid. In the Value column, select "On (Required)".

4. Click the Save button. 

5. Click "Confirm" on the "Change configuration options" pop-up. Your changes will take effect within 15 minutes.