Managing security

Administrators can manage the security settings for users who have 2-factor authentication (2FA) or device authorization enabled. These settings provide an additional level of security by adding a few steps to the sign in process. To learn more, see Device authorization and 2FA: the end-user experience. This topic describes how to update the security settings when users sign in.

  1. Select Site Management on the main Navigation panel.

  2. Select the Manage users tab.

  3. To view a user's security settings for 2FA and device authorization, select the More options icon for that user and select Manage security.

    Note

    If the Manage security option is not visible, 2FA and device authorization have not been enabled for users on your site. Contact your Customer Success Manager for assistance.

  4. You can update the phone number on which the user receives security codes via SMS text message under SMS 2FA phone number. The phone number displayed is the number that was configured by Diligent when 2FA was enabled for the user's site.

  5. Select the Country field and choose the relevant country code.

  6. Enter the user's mobile number in the Enter phone number field. The formatting updates automatically, so you don't need to enter dashes (-) or spaces between the numbers.

  7. To delete the user's mobile phone number, you can select the x next to it.

  8. Select Save to save your changes.

    Note

    When you change the user's phone number, they will be required to enter a security code the next time they sign in, regardless of whether the Bypass multi-factor authorization setting is enabled (see below for more information). The security code will be sent via SMS text message to the user's mobile phone.

  9. The user's preferred security setting for site access is displayed under Multi-factor authorization settings.

  10. The site default setting is based on the site that the user is signing in to. A description of which user roles will be required to authorize their device or enter a security code is displayed next to (Site default). To enable the site default security setting, select the radio button next to it.

  11. To allow the user to sign in without authorizing their device and/or entering a security code, select the radio button next to the Bypass multi-factor authorization setting.

  12. To require the user to authorize their device and/or enter a security code every time they sign in, select the radio button next to the Requires multi-factor authorization setting.

  13. Select Save to save your changes.