Multi-Factor Authentication for Administrators

Multi-factor authentication (MFA) is an optional feature that you can enable for all administrators of your Luminate Online site to add an extra layer of protection to the account. Enabling this option does not impact constituents.

What is MFA?

Multi-factor Authentication (MFA) is an authentication method that requires you to identify yourself with two or more factors (pieces of evidence) to sign in. Main types of factors are:

  • Knowledge — Something you know, such as such as a password.

  • Possession — Something you have, such as a code sent to a personal device.

  • Inherence — Something you are, such as facial recognition.

How does it work in Luminate Online?

Beginning with the January 2024 release, after an administrator enters their username and password into Luminate Online, a screen prompts for a mobile phone number on which to receive a verification code. After entering a number and selecting Verify, a code is sent via SMS (text) to the mobile phone number, and the number provided by the administrator is stored on the profile record.

The administrator enters the code from the text message into the Luminate Online login page to access Luminate Online.

Administrators who log in from a public connection will clear the option for This connection is private and will need to provide SMS MFA upon each login.

Tip: Admins on a private connection who previously authenticated location within the past 30 days may not be sent or prompted for a code after entering their phone number until the current authentication expires.

How do I Enable MFA for Admins?

As of the 24.0 release, all administrators will use MFA. There is no need to enable this for your specific site.

How do I change a phone number used for administrator MFA?

To change the phone number used to receive confirmation codes upon log in, update the number in the administrator's profile record.

  1. In Luminate Online, go to Constituent360, then search for and open the administrator's record.

  2. On the administrator's record, select Change MFA Phone.

  3. Enter a new mobile phone number. Select a country from the drop-down to add the country code.

  4. Select Update.