Configure Google Multi-Factor Authentication (MFA)
Enable Google MFA for account access to SaaS Security
to strengthen your security posture.
If your organization has not standardized
a SAML SSO for SaaS
Security administrator access, you can setup multi-factor authentication
(MFA) to strengthen your security posture. You must be a Super Admin
to set or change the authentication settings. When you enable MFA,
you protect your account by logging in with your password and a
unique verification code (sent to your phone via text, phone call,
or the Google mobile app).
Google MFA Authentication
is unavailable to SaaS Security instances set up after July 17, 2019.
Configure your device for MFA.
Your Android device must be running Android version 2.1
or later to use Google MFA. Your iPhone, iPod Touch, or iPad must have
the latest operating system for your device, and your iPhone must
be a 3G model or later in order to set up the app using a QR barcode.
Log in to SaaS Security using your current
Proceed to setup MFA
the Google Authenticator
app to your mobile device.
Link your mobile device to your account on SaaS Security.
. If the authenticator
app cannot locate a barcode scanner app on your mobile device, you
can download and install one. If you want to install a barcode scanner
app so you can complete the setup, select
and then go through the installation process. After installation,
reopen Google Authenticator, and point your camera at the barcode
on your computer screen.
— Select Private
and then enter the
your authenticator app.
to receive two consecutive passcodes
to sync to the authenticator app.
On SaaS Security, enter the two passcodes and
License Agreement (EULA).
To test that the app is working, enter the verification
your mobile device and then
. A confirmation
message will display if your code is correct.
exit the setup. If your code is incorrect, try generating a new
verification code on your mobile device, and then entering it in
Configure MFA on SaaS Security.
, you can change the Authentication
settings for any account except your own. To change your Authentication
settings, another Super Admin must configure your account.
user access after successfully presenting a passcode pair or QR
barcode evidence to the MFA mechanism.
— A single sign-onlogin
event provides automatic access to multiple authenticated services,
and a single logout event automatically ends the session for multiple
Define the settings for local authentication.
Enter the one-time password (OTP) prompt frequency
not prompt for OTP
log in attempts, or the number of days from
Enter the number of incorrect login attempts allowed in
logins after consecutive incorrect passcodes
Administrators will see this authentication message after
entering their SaaS Security credentials.