Multi-factor authentication (MFA) is an electronic authentication process. Access is given to a website user, or even an app user, only once the user has successfully completed two or more different types of evidence (factors) to an authentication feature.

On MyRec.com, MFA is broken up into two parts:

• Management-side MFA
  • Requires authentication for management login
• Public-side MFA
  • Requires authentication for public login
• These are two, separate settings that can be enabled for your site independently from each other
• The Client Services team will need to turn on your MFA setting, so reach out to Support for assistance
• MFA requires a valid email address or phone number
• For management side setup, the system will use whatever information has been entered in the User Info section from your Manage Users page within the Administration menu

• It is not advised to have multiple accounts using the same email address 
• For public member accounts, the system will use the information entered in the member's Multi-Factor Authentication area on the Member Info page in their management-side account

• This information is separate from anywhere else that an email or phone number is used in the system
  • If the same email address is used for multiple members (not suggested, but possible), as long as the member has access to the inbox for the email or phone number used, they will be able to proceed
• Once authenticated, the authentication will remain valid for 5 days (the time period is non-negotiable), after which, the account will require re-authentication

Management Side MFA

1. Log in using your username and password 
   1. If you haven’t authenticated recently, you will be required to select an authentication method (email or text) and send a code

2. If an incorrect account was used to login, use the Return to Login link to go back and use the correct account
3. After a method is selected and a code is sent/received. type in the code, click Enter Confirmation Code, and you will be taken to your homepage

Public Side MFA

1. Log in using your username and password
   1. If the user has not completed the MFA email or text step, they will be asked to provide the info at this time
      1. They will not be able to get into their account without that information
   2. If the user hasn't authenticated recently, they will be required to select an authentication method (email or text) and send a code
2. If an incorrect account was used to login, use the Return to Login link to go back and use the correct account

3. After a method is selected and a code is sent/received, type in the code, click Enter Confirmation Code, and the user will be taken to their homepage

Updating MFA Information

Management User

A logged-in site administrator is able to manually update other management accounts' information via the Manage Users link in the Administration menu on the left-side navigation bar

1. Click Administration from the menu bar
2. Click Manage Users
3. Select the user and click Edit
4. Update the user information, and click the green button to Submit

Public User

1. Once logged in, navigate to household members list, and select the member that needs to have their information updated
2. MFA Information can be found and/or edited beneath the Login Information area
3. Submit to update