Enabling multifactor authentication for external entities

When multifactor authentication is enabled, you can also enforce it. The customer representative must register a device for sign-in. When multifactor authentication is not enforced, the customer representative can register a device and use it for sign-in. Up to ten devices can be registered for multifactor authentication, but the limit is one email address at a time.

  1. Sign in as an external entity administrator.
  2. Click the profile icon and select External Entity Management.
  3. On the external entity pane for Billing and Receivables Portal, select the pencil icon and click MFA Settings.
  4. Click Enable MFA.
  5. Optionally, select Enforce MFA.
  6. In the authentication method parameter, select Email or TOTP, or both. Do not use other options.