Updates for SMS multi-factor authentication

Note: Short message service (SMS) multi-factor authentication (MFA) only affects users who log in without using single sign-on (SSO).

After this feature is enabled, YourCause CSRconnect prompts you to enter a phone number to associate with your username as an additional method of authentication. You must validate ownership of your number by verifying the token you receive. You will receive future authentication prompts to this number.

Note: If you are entering an international number or a number longer than 10 digits, you may see an error message that indicates your number is invalid. Enter a + in front of your number to correct this.

You can select Remember this device for 30 days if you want YourCause CSRconnect to remember the browser for 30 days after authenticating your login.

As a security measure, we have also added a Captcha requirement when you attempt to reset your password to prevent excessive automated password reset submissions.

Warning: Contact Support if you have not enrolled in SMS MFA after it has been enabled for your account but need to reset your password, have lost your phone, or receive a new number prior to enrolling. You may see a prompt to enter a verification token, but you will not be able to enroll in SMS MFA in these instances.

For more information, see Multi-factor authentication.