How do I manage MFA for a user?

Modified on Fri, 16 Feb at 4:52 PM


Functionality reserved for level 2 and 3 support  


This article applies to all types of user: practitioner, administrator client, standard client and employee of the accounting firm's clients.


What is multi-factor authentication (MFA)?

Security is one of the biggest challenges facing online services. We are determined to provide the most secure service to our clients. One such service is MFA, which is an optional layer of security to reduce the potential risk of others accessing your account. There is no cost involved in adding MFA. All you need to do is generate temporary personal codes.


How do I know if MFA is activated for a user?

If the accounting firm uses an SSO connection, MFA cannot be activated and MFA management for the user is not available.


To find out whether MFA is activated for a user :

  • Log on to the Administration application
  • Click on the "Client users" menu (in the case of an administrator or standard client) or "Practitioners" (in the case of a practitioner) in the left-hand bar
  • Select the user


  • Click on the "Authentification and security" menu



If the accounting firm uses an SSO connection, MFA cannot be activated and MFA management for the user is not available ("Login" tab).


MFA not activated on the user

If MFA is not activated on a user, the status "Not offered" is displayed in the "Login" tab.


If MFA is not activated on a user, this means that it is not activated on the accounting firm.
see article : "How to manage MFA in an accounting firm?"


MFA suggested on the user

If MFA is suggested on a user, the "Suggested" status is displayed in the "Login" tab.


If MFA is suggested on a user, this means that it has been activated with the "suggested" level on the accounting firm.
see article : "How to manage MFA in an accounting firm?"


MFA forced on the user

If MFA is forced on a user, the "Forced" status is displayed in the "Login" tab.


If MFA is forced on a user, this means that it has been:
  • either activated with the "Forced" level on the accounting firm
see article : "How to manage MFA in an accounting firm?"
  • or forced individually on the user



How do I know if the user has configured MFA?

To find out if the MFA has been configured for a user :

  • Log on to the Administration application
  • Click on the "Client users" menu (in the case of an administrator or standard client) or "Practitioners" (in the case of a practitioner) in the left-hand bar
  • Select the user

  • Click on the "Authentification and security" menu


If the MFA has been configured, the status will be "Activated" with the activation date:


How do I force MFA on a user?

Forcing MFA on a user means that the user must configure MFA to connect to applications. The action is individual, unlike managing MFA on the accounting firm.


To force MFA on a user :

  • Log on to the Administration application
  • Click on the "Client users" menu (in the case of an administrator or standard client) or "Practitioners" (in the case of a practitioner) in the left-hand bar
  • Select the user

  • Click on the "Authentification and security" menu

  • Click on the button "Force MFA"



How do I reset a user's MFA?

Re-initialising the MFA means that the user will have to configure the MFA again, particularly if the application that generates the temporary codes is lost.


To reset the MFA for a user:

  • Log on to the Administration application
  • Click on the "Client users" menu (in the case of an administrator or standard client) or "Practitioners" (in the case of a practitioner) in the left-hand bar
  • Select the user

  • Click on the "Authentification and security" menu

  • Click on the button "Reset MFA"


The configuration status is displayed instead of the activation date.

How do I activate push notifications for a user's MFA validation?


To activate push notifications for MFA validation, the user must first have downloaded the "Deloitte Direct" mobile application and logged in once.


For MFA push notifications on a user:

  • Log on to the Administration application
  • Click on the "Client users" menu (in the case of an administrator or standard client) or "Practitioners" (in the case of a practitioner) in the left-hand bar
  • Select the user

  • Click on the "Authentification and security" menu
  • Click on tab "Mobiles devices"

  • Click on the mobile device for which MFA push notifications are to be sent


If multiple mobile devices are enabled, MFA push notifications will be sent to all mobile devices.

Users can also activate them from "My account"

see article : "How do I manage my mobile devices?"


Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article

Preview
0 of 0