Multi Factor Authentication (MFA) for Customer Portal
Multi-Factor Authentication (MFA) is a security process that requires users to provide two or more verification factors to gain access to an account, system, or application. This adds an extra layer of protection beyond just a username and password. This reduces the risk of unauthorized access, even if one factor, like a password, is compromised.
Zoho Invoice allows you to enable Multi-Factor Authentication (MFA) for the Customer Portal to enhance account security and protect them from unauthorized access. Your customers can configure MFA by scanning a QR code using an authenticator app, such as OneAuth or Google Authenticator. After configuration, they can use the Time-based One-Time Password (TOTP) received in their autheticator app and log in to their portal.
ON THIS PAGE
Enable MFA in Customer Portal Preferences
To enable MFA in the Customer Portal Preferences page:
- Go to Settings and select Customer Portal
- Mark the Enable multi-factor authentication (MFA) option.
- Click Save.
MFA will be enabled for customer portal.
How Customers Can Configure MFA
Prerequisite: Download an authenticator app (such as OneAuth or Google Authenticator) from the Google Play Store or the App Store.
Once you enable MFA for the customer portals, your customers can use an authenticator app (such as OneAuth, Google Authenticator) to configure it themselves.
To configure MFA, customers should:
- Go to the customer portal login page.
- Enter their credentials.
- Click Configure in the Enable MFA for their account page.
- Scan the QR code using their authenticator app.
Insight: They can also manually enter the authentication code received in their authenticator app.
- Click Next once they get the OTP on the authenticator app and enter it.
- Click Verify.
- Finally, Click Enable MFA.
Now, your customers can log in to their portal using the TOTP received in their authenticator app.
Reset MFA for Customers
If a customer loses access to their authenticator app and does not have backup codes, you can reset MFA for them. Here’s how:
- Go to Customers and select the required customer.
- Click the Gear icon next to their email address in the customer’s Details page, and select Reset Portal MFA from the dropdown.
MFA will be reset for the respective customer, and they will have to configure it again to log in to their portal.
Disable MFA in Customer Portal Preferences
To disable MFA in the Customer Portal Preferences page:
- Go to Settings and select Customer Portal.
- Unmark the Enable multi-factor authentication (MFA) option.
- Click Save.
MFA will be disabled in the Customer Portal Preferences page for customer portals.
Note: If a customer has already configured MFA, they must use TOTP to log into their portal, even after MFA is disabled. To disable MFA for these customers, you can consider resetting their portal.
Thank you for your feedback!You Might Also Find These Helpful
Customer Portal
Learn more about how customer portal in Zoho Invoice simplifies the process of sending transactions and receiving payments.
Login to the Customer Portal
Learn about how your customers can get started with Customer Portal.
Enable MFA for Zoho Invoice Account
Learn how you can enable Multi-Factor Authentication (MFA) for your Zoho Invoice account.