About multi-step authentication

IRIS Cascade supports multi-step authentication through the use of a memorable word. If your organisation enables multi-step authentication, all system users must select a memorable word to use when logging in, in addition to their username and password.

If your organisation enables multi-step authentication, it is enabled for all employees.

The use of a memorable word is bypassed if using an external identity management provider.

Preparing for multi-step authentication

Before you enable multi-step authentication, it is advisable to send some communication to your employees to warn them about the change to the way they log into the system.

Enabling multi-step authentication

To enable multi-step authentication functionality, go to Admin > Application Data > System Properties > Logon & Session and select (tick) Enable Multi-Step Authentication.

If you want employees to be able to reset their own memorable word, you also need to select Enable Password Security Question. Otherwise the memorable word will need to reset by an admin with access to Users, Profiles and Roles > Users.

 

What a user will see

Once everything has been enabled, when a user next logs into IRIS Cascade or IRIS MyCascade they will see the following;

 

Memorable word prompt

 

Then after a user has logged in (username and password) they'll be prompted for random letters from their memorable word.