Skip to content

Multi-Factor Authentication (MFA)

Overview

Multi-Factor Authentication (MFA) adds an extra layer of security to your RunMyProcess Digital Suite account. In addition to the standard username and password login, MFA requires a verification code delivered to your email. This helps protect your account against unauthorized access even if your credentials are compromised.

When enabled, MFA applies not only to the Digital Suite web platform but also to the RunMyApp mobile application.

How It Works

Enabling MFA

  1. Navigate to the Account module in Digital Suite.
  2. Open the Account tab.
  3. Select the option Enable multi-factor authentication.

⚠️ Important: If you are using any provider that authenticates with the Login/Password method based on a RunMyProcess user’s credentials, enabling MFA will cause authentication failures.

  • To resolve this, you must create a System User and switch the authentication method to System User Token.

  • For details, see the System User documentation.

Authentication Flow

  1. Login: After logging in with your username and password, you will be redirected to the MFA page.
  2. Verification Code: A one-time code will be sent to your registered email.
  3. Code Entry: Enter the code to complete the login process.
  4. If you did not receive a code, click Resend Code.
    • After the first resend, you must wait five minutes before requesting another.

MFA with Single Sign-On (SSO)

If Single Sign-On (SSO) is configured for the login account, Multi-Factor Authentication (MFA) will not apply at the platform level. To enforce MFA, it must be configured within the SSO provider itself (e.g., Azure AD, Okta, Google Workspace).

  • Platform MFA is bypassed when SSO is enabled, as authentication is fully managed by the SSO provider.

  • All users authenticating via SSO will follow the MFA policies defined in the identity provider.

Using MFA with Custom Login Pages

If you use a custom login page, once the user clicks the Login button, they will be redirected to the MFA verification page (as shown below) where the user must enter the verification code sent to their registered email address. For configuration details, see the Custom Login Page documentation.

2_MFA

MFA in RunMyApp

When MFA is enabled on your Digital Suite account, it is automatically applied in the RunMyApp mobile application as well.

IOS

3_MFA

Android

4_MFA