GraspDATA Two Factor Authentication (2FA) FAQ's
- What is Two Factor Authentication (2FA) and how does it work?
- 2FA strengthens access security by verifying a user’s identity using requiring two methods:
- Username and Password
- A unique one-time Authorization Code
- After a user enters their credentials, the user must then enter a unique one-time Authorization before gaining access to GraspDATA.
- 2FA strengthens access security by verifying a user’s identity using requiring two methods:
- How will the unique one-time Authorization Code be obtained?
- The Authorization Code will be delivered by either Text Message or Email, which is configured by each user at the time of 2FA registration.
- What information is needed to register for 2FA?
- If the user would like to receive the code via Email, no further information is required. The email will be sent to the email address attached to the users’ account (this comes from the Email field in the Agency Admin or Corp/Agency Users profile in GraspDATA).
- If the user would like to receive the code via Text Message, the user will need to provide a CELL PHONE NUMBER and the CELL PROVIDER name.
- Can a different email address be used to receive notifications?
- If the user would like an Email notification, it can only delivered to the email address that is attached to the users account.
- What if we have a general reporting user accessed by multiple people?
- All will need access the Email address to retrieve the 2FA authorization Code.
- Can the notification delivery method be changed after initial registration?
- If a user would like to change the Cell Phone Number the notification is delivered to, or change from Text Message to Email or vice versa, the user can elect to reset their own 2FA through My Account in GraspDATA. The user will then be prompted to re-registered upon next login.
- Can an Agency Admin force a user(s) to reset or change their 2FA notification method?
- No. This can only be done by the user.
- Can 2FA be enabled or disabled for specific users?
- 2FA is enabled at the Agency level in GraspDATA. As such, if 2FA is enabled, all GraspDATA users, Agency Admin or Corp/Agency Users alike, will be required to register.
- Can 2FA be disabled (and or reenabled)?
- 2FA can only be disabled or enabled by Grasp.
- If an Agency would like to disable and or reenabled 2FA, this can be done by emailing support@grasptech.com
Note: If an Agency elects to disable 2FA and then re-enable it at a later date, any User that had previously registered their 2FA will not be prompted to re-register; the prior configuration would still be in place.