Multi-Factor Authentication (MFA)
Multi-factor authentication increases the security of your work on Moxion significantly by combining more than one independent identity verification method. The first is a user's email/password combination that's established by them as their login credentials. The next is an authentication code sent to, or provided by, a separate personal device such as a smartphone that is otherwise removed from our traditional login process.
Once enabled, MFA will be required the first time any user logs in. If they close that browser tab or window, let the app go to a lock screen, or choose to log out as a trusted device, no further prompts will happen for another 28 days. If you'd like MFA to be required every time a user logs in regardless of circumstance in your Company, please reach out to email@example.com.
MFA for Admins
You'll need to have Admin-level permissions in order to be able to enable MFA on Moxion, which can be done at either the Folder or Company level. To enable MFA for a Folder, open it up from the Desktop and then head to the Settings tab.
Choose the Security section and then switch the toggle to on (blue) to enable Multi-factor Factor Authentication. You'll get a confirmation modal window which outlines the impact of enabling MFA.
Those with Company Administrator permissions can enable Multi-factor Authentication (MFA) across an entire Company, meaning that every Production and Folder under that umbrella would require the use of MFA in order to log in and view assets. You can switch this on from the Company section of your personal settings.
In the event that there's an issue with a user's MFA information, the Company or Folder Administrator can reset their info. All they need to do is login, open up the Teams tab and search for the user in question. After finding them, select their card under the Contacts column and click the MFA Reset button.
For security reasons, Moxion Support cannot restore access to accounts where Multi-Factor Authentication has been enabled
MFA For Every Sign-In
Moxion defaults to allowing anyone who signs in with MFA to set a trusted computer or device so they don't have to go through the secondary authentication process with every login. This quality of life feature can be disabled by our team at the company level (i.e. across your entire organization) if you require a higher degree of security from our platform.
If you need that enabled, please reach out to firstname.lastname@example.org!
MFA User Setup
You'll be required to use your phone number as authentication first, and then you'll have the opportunity to set up a Google Authenticator.
Step 1 - Download Google Authenticator
You will want to install Google Authenticator on your device of choice before proceeding. Follow the links below to grab it for your OS:
Step 2 - Sign in to Moxion
Head on over to https://app.moxion.io/login and sign in. Once you've done that, you will be taken through the MFA setup process. On the first page is an overview of MFA itself.
Clicking the Next button will bring you into the start of the setup process itself.
Step 3 - Connect Your Phone Number
Here you'll be asked to set the country you're in and add your phone number. Once you’ve entered that, select Text or Call to choose the method by which Moxion will to send out a code to verify that the number belongs to you.
After you receive the code, enter it into the field that appears on the following page and then click Next to move on.
Step 4 - Save Recovery Code
Here you'll be provided with a code that you can use to gain access to your account in the event that your phone is lost, stolen or otherwise not-at-hand. Copy this code and store it in your password manager, if you have one.
If you don't have one of those, we recommend keeping the code somewhere secure but familiar as you will need it to regain access to your account.
Once it's secret and safe, check the box to note that you've written it down and click Next to continue on.
Step 5 - Add Your Code to Google Authenticator
This page contains instructions on how to get Google Authenticator setup on your device. If you haven't already, you'll want to find and download the app.
Once you've got the app installed, tap the plus button in the bottom right side of the screen. The option to Scan the QR code is the quicker of the two ways of adding it, but if you'd like to type it in manually, you can do so.
After the code has been added, click Next in the browser to go to the last step.
Step 6 - Enter and Confirm Your Google Authenticator Code
Here you'll just have to enter the new code from Google Authenticator on your device into the MFA Code field:
Once you've done that, your MFA Setup will be complete! You'll have to log in once more, entering the code, but then we'll retain your login MFA details for 30 days, and you will only be required to re-authenticate once every 30 day period.