1. Pimberly
  2. Admin Guide
  3. Organisation Settings / General Pimberly Setup

Multi-factor authentication

Updated
David Allardyce
Have more questions? Submit a request

We're excited to announce support for multi-factor authentication (MFA) for Pimberly users.

Rolling out from Tuesday 4 June 2024, multi-factor authentication adds an additional layer of security to a Pimberly user's account by requiring a unique, time-sensitive code to be entered during the login process.

Initially, users will need to be opted in to multi-factor authentication by the Pimberly support team, however in future this will be available for admins to enable from within Pimberly.

Please contact the support team if you're interested in enabling this feature for your users.

Setting up multi-factor authentication

Once a user's account is enabled for multi-factor authentication by the support team, the login experience is a little different.

After entering their email address on the login page, the user is redirected to auth.pimberly.com where they enter their password:

mfa-login-0.png

mfa-login-1.png

After entering their password, the user will be prompted to secure their account by setting up multi-factor authentication:

mfa-setup.png

Users can use their preferred authenticator app, such as Authy, Microsoft Authenticator or Google Authenticator to generate codes, by scanning the QR code shown on screen.

Alternatively, receiving codes by text message is available is an option by clicking the Try another method link at the bottom of the page, and selecting SMS:

mfa-sms.png

The next step is to record the recovery code. This allows users to log in if they don't have their device with them:

mfa-recovery-code.png

Once complete, the user will be logged into Pimberly as normal.

Logging in with multi-factor authentication

The next time a user logs in, they'll be redirected to auth.pimberly.com and will be prompted to enter their password. On the next step, they will be asked to verify their identity using their authenticator app or text message:

mfa-otp.png

Tip: use the Remember this device for 30 days checkbox to skip this step on future logins. Don't do this on a device you share with other people.

After clicking continue, the user will be logged in to the Pimberly dashboard as usual.

Troubleshooting

If a user has forgotten their password, they will be able to use the Forgot Password? button on the login page to initiate a password reset.

If a user isn't able to generate a one-time passcode, they should use their recovery code to authenticate. They'll then be prompted to save a new recovery code.

If the user doesn't have their recovery code, please contact the Pimberly support team, and we will reset the multi-factor authentication on their account, so they can set themselves up again.

Please note the support team cannot provide login codes to users.

Articles in this section

Was this article helpful?
1 out of 1 found this helpful