Multi-Factor Authentication Guide
Everything you need to know about MFA on Vertos AI
On This Page
What is MFA?
Multi-Factor Authentication (MFA), also known as Two-Factor Authentication (2FA), adds an extra layer of security to your account. Instead of just using a password, MFA requires you to provide a second form of verification.
Why it matters
Even if someone steals your password, they won't be able to access your account without your second factor (like your phone).
How to Enable MFA
- 1
Download an Authenticator App
Install an authenticator app on your smartphone. We recommend:
- Google Authenticator (iOS/Android)
- Microsoft Authenticator (iOS/Android)
- Authy (iOS/Android/Desktop)
- 1Password (with TOTP support)
- 2
Go to Security Settings
Navigate to Portal → Settings → Security and click "Enable Multi-Factor Authentication".
- 3
Scan the QR Code
Use your authenticator app to scan the QR code displayed on screen. This links your account to the app.
- 4
Enter Verification Code
Enter the 6-digit code from your authenticator app to verify the setup.
- 5
Save Backup Codes
Download and securely store your backup codes. These are essential for account recovery.
Supported MFA Methods
Authenticator App (TOTP)
Time-based one-time passwords generated by an authenticator app. This is the recommended and most secure method.
RecommendedBackup Codes
Single-use codes for emergency access when you can't use your primary MFA method. Store these securely offline.
Organization MFA Requirements
Organization administrators can require all members to enable MFA. If your organization has this requirement:
Grace Period
New members typically get a grace period (usually 7 days) to set up MFA after joining.
After Grace Period
Once the grace period expires, you must set up MFA to access organization resources.
Admin View
Organization admins can see MFA compliance status for all members in the Team Management page.
Backup Codes
Backup codes are your safety net if you lose access to your authenticator app. When you enable MFA, you'll receive a set of one-time backup codes.
Important
Store your backup codes in a secure location, such as a password manager or a physical safe. Each code can only be used once.
Best practices for backup codes:
- Never share your backup codes with anyone
- Store them separately from your password
- Generate new codes if you've used several
- Generate new codes if you suspect they're compromised
Account Recovery
Lost your MFA device?
- Use a backup code: If you saved your backup codes, use one to sign in.
- Contact support: If you don't have backup codes, contact support@vertosai.com with proof of identity.
- Identity verification: Our support team will verify your identity before disabling MFA on your account.
- Re-enable MFA: Once you regain access, immediately set up MFA again with a new device.
Frequently Asked Questions
Can I use MFA on multiple devices?
Yes, some authenticator apps (like Authy) support syncing across multiple devices. You can also add the same account to multiple authenticator apps by saving the QR code or secret key during setup.
What if my authenticator codes aren't working?
Make sure your device's time is synchronized correctly. TOTP codes are time-based, so even a few minutes of drift can cause issues. Check your device's date/time settings and enable automatic time sync.
Can I disable MFA?
Yes, you can disable MFA from your security settings. However, if your organization requires MFA, you won't be able to access organization resources without it.
Is MFA required for all users?
MFA requirements depend on your organization's security policy. Some organizations require all members to have MFA enabled, while others leave it optional but recommended.
Still need help? Contact Support