Note: Only Admin users can set up multi-factor authentication for a CareerPlug account.
What is multi-factor authentication (MFA)?
Multi-factor authentication (MFA) is an authentication method that requires users to provide additional verification factors beyond just their username and password to gain access to an account.
Why use MFA with CareerPlug?
Add extra security to your account with MFA and require your users to sign in with more than a password.
How do I set up MFA for my CareerPlug account?
1. Sign into your CareerPlug Admin account.
2. Click on the Settings tab in the top-right corner of the page.
3. Click the Enable button under whichever method you'd like to enable with MFA: Authenticator App or SMS / Text Message.
To enable MFA via Authenticator App:
4. Download an authenticator app on your mobile phone, such as Google Authenticator or Authy.
5. Click the Continue button.
6. Scan the QR code using your authenticator app and enter the authorization code from the app in the field below the QR code.
7. Click the Enable and Continue button.
8. Click the Copy button and store your recovery codes in a secure location (such as in a password manager). These are used when you are unable to receive an authorization code from your authenticator app. These codes cannot be retrieved again after leaving this page and each code is one-time use only.
To enable MFA via SMS:
4. Click the Continue button.
5. Enter the mobile phone number you want to receive authentication codes via SMS.
6. Click the Send Code button.
7. Enter the authentication code sent to your phone.
8. Click the Enable and Continue button.
9. Click the Copy button and store your recovery codes in a secure location (such as in a password manager). These are used when you are unable to receive an authorization code from your authenticator app. These codes cannot be retrieved again after leaving this page and each code is one-time use only.
How do I sign into CareerPlug using MFA?
The next time you try to log into CareerPlug, you'll be prompted to enter an Authentication Code along with your email and password.
If you enabled MFA via SMS, a text message will be sent to your phone after you enter your email address on the initial login screen.
If you need a new code sent via SMS, click the Click here to send a new one link.
How do I remove MFA?
You can only set up your CareerPlug account with a single MFA method. To enable a different method — or to remove MFA altogether — you'll need to disable the MFA method you are currently using first.
1. Sign into your CareerPlug Admin account.
2. Click on the Settings tab in the top-right corner of the page.
3. Click the Disable button under Authentication Methods.
4. Click the Disable Multi-Factor Authentication button in the pop-up.
How do recovery codes work?
You can use recovery codes to access your account instead of an authentication code if your phone or authenticator app is unavailable.
You'll receive your first set of 10 recovery codes when you enable MFA. We strongly recommend storing your recovery codes in a password manager for safe keeping because you will not be able to view them again in CareerPlug. You can only use each recovery code one time.
If you use all of your recovery codes or you lose them, you can always generate a new set.
To generate new recovery codes:
1. Sign into your CareerPlug Admin account.
2. Click on the Settings tab in the top-right corner of the page.
3. Click the Create New Codes button at the bottom of the Security page.
4. Click the Copy button and store your new recovery codes somewhere secure.