Zoomforth allows multi-factor authentication (MFA) to access restricted sites. When this option is selected, the visitor is first authenticated via email, then via a third-party device. The mobile device can either use its SMS utility or an application installed in it for authentication.
If authentication via a mobile application is preferred, access to the camera utility must be given to the authentication application application to complete the setup. Links to the third-party authentication applications are provided during the setup.
To setup a device for MFA via an authentication application:
1. Complete a successful email authentication to get into the dialog box where the viewer can choose which MFA can be setup next. This article describes the experience during a successful email authentication.
2. Select the first option, Authenticator App.
3. A dialog box with a QR code will be displayed.
4. Bring up the authentication application in the mobile device, and click the button to add a new account.
5. In the mobile application, the button to read a QR code may have to be selected.
6. Using the device's camera, scan the QR code, similar to what is shown in step number 3.
7. A 6-digit code will be generated, once the account is successfully added in the authentication application.
8. Enter the code back to the dialog box in step number 3.
9. Click Submit and the site will be loaded up.
The device only needs to be setup once for MFA, and it should work for all the other sites with MFA authentication shared by the same account instance. An MFA device would have to be setup again for the same site viewer or email address, though, when:
1. A prior MFA device reset request had been approved by a Zoomforth administrator;
2. The site viewer is attempting to access another Zoomforth site with MFA authentication enabled, while the site was shared by another account instance or team. Sites shared from another Zoomforth account instance or team will have different domain or subdomain.