What is Multi-Factor Authentication

About Multi-Factor Authentication

Multi-Factor Authentication (MFA) is available for Felix vendor users. Sometimes referred to as Two-Factor Authentication (2FA), this security measure adds an extra layer of protection to prevent unauthorised users from accessing Felix, even if a password has been stolen.  It requires users to provide two or more forms of identification before accessing their accounts. This is to ensure that only authorised users can access sensitive information.

While vendors can currently choose if they wish to enable MFA on their Felix account, we will be enforcing MFA on all vendor accounts come late 2024/early 2025. It's strongly advised that vendors enable MFA at their earliest convenience to safeguard their account and their information. 

MFA methods supported by Felix

Felix vendors have two MFA options available to them:

1. Authenticator App-based MFA: Sometimes called Time-based One-time Password (TOTP). This type of MFA allows you to link your account to the Authenticator app where you will scan a QR code or manually enter a setup key provided by the service into the app. When you log in to your account in addition to your regular username and password, the app generates a temporary, time-sensitive or event-based code that you must enter which changes regularly to complete the authentication process. Examples of Authenticator apps include Google Authenticator, Microsoft Authenticator or Authy.
2. SMS-based MFA: This type of MFA allows you to link your phone number to the account where you will be asked to verify your phone number by entering a code sent to you via SMS. When you log in to your account in addition to your regular username and password, you will receive a one-time code to your phone number via SMS that you must enter to complete the authentication process.

Vendors will require their own individual login enable MFA

Shared accounts (e.g. admin@yourcompany.com) lack robust security measures and present major security vulnerabilities for organisations. Learn more about why using shared accounts to access Felix is a major security risk.

To make account security a priority, vendors are required to have individual accounts to access Felix. If your vendors need help setting up additional users in their account, our guide on How to add a new vendor user will walk them through the simple process of how the account admin can add new users Felix. 

How to enable MFA

To enable MFA, please refer to our Help article: How to enable MFA.

If you have any questions or concerns about MFA, don't hesitate to contact our Support team for assistance.