finPOWER Connect Cloud Configuration; Multi-Factor Authentication can now be configured

The Security page of the finPOWER Connect Cloud Configuration form now allows a Multi-Factor Authentication (MFA) method to be defined. You can also define a range of Roles that, if the User conforms to, means that MFA will NOT be applied.

Additionally, you can allow Users to defer re-entry of the MFA code for a given number of days, i.e., after signing in and entering the MFA code, they will not be prompted to re-enter a code on this device for the specified number of days.

The Users form, Web Access page now has an additional buttons to "Reset Multi-Factor Authentication" and "Create Emergency Code". The first allows Multi-Factor Authentication details to be cleared for this User so that when they next sign-in, they will be prompted with a QR code (if necessary) to scan into an authenticator app such as Google Authenticator. The second generates a code that is valid for 2 minutes and can be entered by a User if they do not have access to their email/ Authenticator app.