Multi-factor authentication (MFA) is a login feature that provides enhanced security protection for data and users. MFA is commonly used for many websites and applications, especially those managing personal, contact or financial information for users.
Xemplo will be activating MFA for all users from mid-2024. New customers implementing Xemplo will have MFA activated for all users immediately on Go-Live. Existing Xemplo users will be transitioned to MFA from mid-2024 (for Administrators) and late-2024 (for Workers). Xemplo Customer Support will contact all customers to confirm their approximate MFA activation date. |
Why is MFA important for Xemplo?
Unlike traditional login methods that rely solely on a password, MFA adds an extra layer of security by requiring users to provide an additional verification code when logging in to Xemplo.
MFA for Xemplo protects users and their data in multiple ways:
-
Enhanced Security: Passwords alone can be compromised through various means like phishing, brute-force attacks, or data breaches. MFA adds an extra layer of security, significantly reducing the risk of unauthorised access even if passwords are stolen.
-
Protects Against Credential Theft: With MFA, a potential attacker needs more than just a password to gain access. Even if they somehow acquire your password, they'd still require the additional verification code, making unauthorised access much more challenging.
-
Secures Sensitive Data: Sensitive personal and company information is stored in Xemplo. MFA ensures that only authorised individuals with the proper credentials and access rights can view and modify this data, protecting it from unauthorised access or manipulation.
-
User-Friendly Security: While it adds step to the login process, MFA is a user-friendly and convenient way to ensure maximum security for your account.
Many regulatory standards and compliance frameworks (such as GDPR, HIPAA, etc.) require or strongly recommend the use of MFA as an additional security measure to protect sensitive information. Xemplo has implemented MFA to ensure compliance with these regulations.
How MFA for Xemplo Works
When MFA is activated, Xemplo users will be required to provide their username (usually their email address), their password, and a verification code that is provide to them via a registered authentication app (for example, Microsoft Authenticator(tm) ), or sent via SMS or email message to their registered phone number or email.
Find out more about logging in to Xemplo here.
Let your workforce know about Xemplo MFA
Keep your team informed about MFA and changes to the login process with these free resources:
- Introducing Xemplo Multi-Factor Authentication (MFA) - download attachment below.
- Xemplo Login Guide
Troubleshooting
Find answers to common MFA issues and recommended resolutions below.
1. What happens if I change the mobile phone number I use for MFA?
Updating the mobile phone number associated with a worker account directly in Xemplo will not automatically update the phone number used for MFA. If you need to change the phone number used to receive verification codes for logging into Xemplo via MFA, please contact our Customer Support team who will update the mobile phone number on your account after verifying your identity.
2. I don't think workers in our business will want to download verification codes. Is there any other way to verify your identity and access Xemplo?
Workers can access Xemplo without MFA by using the Xemplo App, available for iOS and Android devices. When using the Xemplo App, users will be able to set a pin code or use the Face ID feature of their device instead of entering a verification code.
3. I didn't receive a verification code, even after resending the code. How can I log into Xemplo?
If you do not receive a verification code after multiple attempts to either your authenticator or mobile phone number, please contact our Customer Support team.