Multi-factor authentication (MFA)

Multi-Factor Authentication (MFA) adds an extra layer of security during a login process by requiring a second factor in addition to the standard combination of username and password.

MFA can be activated on Opendatasoft to help protect user accounts—and the data in the portals they have access to—even if their password is compromised.

Some administrators may choose to require you to use MFA on your account before being given access to their portals.

If you request access to such a portal and are accepted, you will be prompted to set up MFA the first time you log in. If you had access to the portal before its admin decided to enforce the use of MFA, you will be prompted to set it up the next time you log in.

When prompted, remember that you can use the authentication app of your choice.

Scan the barcode or click Use setup key to obtain the code for the app you've chosen. Enter the one-time code where required, provide a name to help you manage your logins, and click Submit.

And that's it! The next time you log in, you'll need to provide the MFA code from your app.

You can also set up MFA on your account independently.

Go to your account page, click on the Security tab, then click on Set up and follow the same process as described above.

To manage your methods, go to your account page, then to the Security tab.

Click on the pencil icon to edit your methods. There you can click Add app to add additional methods, and click on the trash can icon to delete existing methods.

As an admin, if you would like to force your users to use MFA on your portal, first go to Access > Security.

There you can choose to enforce MFA access for all users, or only for users with access to your portal's back office. Toggle the choice you need, and the next time those users log in they will be prompted to use MFA.