Multi-factor authentication, also known as MFA, is a security process that requires users to provide two different forms of identification before gaining access to an account or system. 


Typically, this involves entering a password (something the user knows) along with a unique code sent to their mobile phone or generated by an authentication app (something the user has). By requiring both elements for authentication, two-factor authentication enhances security by adding an extra layer of protection against unauthorised access, even if a password is compromised.


The settings for this can be found in the Management Console, under the Advanced tab and in the Staff section:



Email:


When selecting the email option, staff will be sent an email upon logging in to the Engage Client. This email will contain a one time use code, which will be active for 5 minutes.


Once you have entered the 6 digit code, you will be logged into your Engage Account in the Engage Client


Authenticator app:



You can scan this code in any authenticator app, however for your NHS mail account, you will already be required to use the Microsoft Authenticator App. If this is not installed on your phone, you can download this at the links below:


 

 

When installed, open the app and press the "+" button in the top-right corner, then click "Other account". This will ask you to scan a QR code. Please scan the QR code presented by the Engage Client.


A pop-up box will appear on your Microsoft Authenticator app, enter the unique number and press submit.


You will then be asked to use this code when logging in, in the future.


  • Implementing MFA can reduce the risk of unauthorised access by up to 99.9%, as reported by Microsoft
  • According to a report by Verizon, 80% of hacking-related breaches are due to weak or stolen passwords.