Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry AtHoc
  3. 7.15
  4. Manage Users
  5. Manage user authentication
  6. Enable two-factor authentication

Enable two-factor authentication

You can require all end user or operators in your organization to use two-factor authentication when logging in with a username and password to Self Service or to the
BlackBerry AtHoc
 management system.
When two-factor authentication is enabled for your organization, when a user or operator logs in, they first enter their username and password. They are then presented with a screen to select a verification code delivery method (email, text, or phone.) The user or operator then receives a verification code on their selected device which they enter to continue the login process.
The verification code expires if not used after five minutes. If the verification code expires, or the user or operator does not enter the verification code correctly, they can request a new verification code. If the user or operator attempts to log in with a second verification code, they will need to fill in a captcha field. They can request up to three verification codes. If a user or operator requests more than three verification codes, they are returned to the login page, and an unsuccessful login attempt is logged. This may result in the user or operator account becoming locked if they exceed the number of login attempts defined in the organization's security policy settings.
  1. Log in to the
    BlackBerry AtHoc
     management system as an administrator.
  2. In the navigation bar, click Settings icon.
  3. In the
    Users
     section, click
    User Authentication
    .
  4. On the
    User Authentication
     screen, in the
    Enabled Authentication Methods
     section, select the Username and Password
    Enable
     option.
  5. In the
    Two-Factor Authentication
     section, select the
    Require for Operators
     and
    Require for Self Service
     options as needed.
  6. Select one or more methods from the
    Verification Code Delivery Methods
     list.
  7. Beside
    Users Unable to Log In
    , click
    Calculate
     to see the number of users who do not have any selected delivery methods. If you enable two-factor authentication, users who do not have one of the selected delivery methods will not be able to log in to Self Service.
  8. Optionally, click
    User(s)
     to open the
    Users Unable to Log In
     window, where you can see which users will not be able to log in. You can export this list to a .csv file, add any missing delivery method information, and import the updated information into the
    BlackBerry AtHoc
     system.
  9. Click
    Save
    .