Appearance
Multi-Factor Authentication in Rapid
In this article, you will find the essential information you need for understanding the setup and configuration of Multi-Factor Authentication (MFA) in Rapid.
Multi-Factor Authentication (MFA) Setup
Prerequisites
- The protocol known as HyperText Transfer Protocol Secure (HTTPS) is strongly recommended
- The system clock of the machine running Rapid must be synchronized with a Network Time Protocol (NTP) Server (Time Source), as the MFA codes are time sensitive
- Individual users will need to have access to an Authenticator app (e.g., Google Authenticator)
Authenticator App Compatibility
- MFA in Rapid works with standard Authenticator apps from Google, Microsoft, Apple, Symantec, ForgeRock
- Google Authenticator works well on both Android and iPhone
MFA Activation Process
MFA in Rapid is activated (enabled) via the "SYSTEM | General Setup" page.
In General Setup, look for the Multi-factor Authentication section: you will need to select the checkbox and key in the details for the duration.
.DUMjuZz0.webp)
Once MFA has been enabled (the checkbox has been selected) and the Sign Up Expiry Duration has been set, select Save.
After activation, users will be prompted to use MFA in Rapid.
See Initial Setup for a User for details on how individual users should set up their MFA account in Rapid.
Resetting a User's MFA Token
MFA tokens for individual users can be reset via the "SYSTEM | User Management" page.
Super Users or User Admins can perform the resets on users’ MFA tokens.
For the chosen user, select the "Reset MFA" option from the ellipsis menu: this selection will reset their MFA token.
.BU9DNrOH.webp)
After the reset on their MFA token, the user’s account will be unlocked, and they will be able to go through the setup process again.
NOTE | If all System Administrators and User Admins are locked out of Rapid, please contact Rapid Support for help.
Multi-Factor Authentication (MFA) for Individual Users
Initial Setup for a User
Once MFA is enabled in Rapid, the user will login to Rapid by keying in their username and password as normal.
The user will then be presented with a setup page for MFA that showcases a QR Code | Multi-factor Authentication Sign Up.
.ClzSqORs.webp)
If the Authenticator app is installed on their mobile device, then the user can use their camera to access the link in the QR Code.
Alternatively, the user can switch from the QR Code to a manual code which they can enter in their Authenticator app.
- The user switches to a manual code by selecting the text in the given phrase: "If you do not have a camera, click here to view the code."
After this selection, the code will be displayed: the user can manually enter the code into the Authenticator app.
.CZB9nqD2.webp)
NOTE | Users have ~2 minutes to complete the setup before the session expires. If the session has expired, the user will need to refresh the page and restart the login process.
Login Flow After Setup
After the initial setup, all logins will require a code from the Authenticator app.
The user should key in their username and password details as normal.
When prompted, the user will enter the code from the Authenticator app that has already been set up.
.C6cK7eCD.webp)
NOTE | If users are locked out, they will need to speak to the System Administrator for your system to reset their MFA token. See Resetting a User's MFA Token.
v4121