1 Getting Started – New User To begin, open the Multi-Factor Authentication Service email in your inbox. 1
1
Getting Started – New User
To begin, open the Multi-Factor Authentication Service
email in your inbox.
1
2
Getting Started – New User
Click the link https://mfa.baptisthealth.net/portal.
This link takes you to the MFA User Portal site where you
complete your account configuration.
2
3
Getting Started – User Log In
Enter your Active Directory Username and Active
Directory Password (also referred to as your AD
credentials).
3
4
Getting Started – User Log In
Click the Log In button.
4
5
Getting Started – User Log In
If you are a new user and never changed your original
password or if your password expired, you may be
prompted to change your password.
5
6
Getting Started – User Setup
When configuring your User Setup, you first need to
confirm the method you wish to use (Text Message,
Phone Call, or Mobile App) for authentication.
6
7
Getting Started - Mobile App Activation
Before you can activate the mobile
app you must download it. You can
have up to two (2) mobile devices
activated at any given time.
To download the mobile app to your
phone, please open your device’s
application store.
The MFA Mobile App is available for
the following mobile operating
systems:• Apple iOS
• Google Android
• Microsoft Windows Phone
7
8
Mobile App Activation
Type “multi-factor authentication”
and tap the Search button to search
for the mobile app.
You can also use “PhoneFactor” in
your search criteria.
8
9
Mobile App Activation
Install the app. Once it is down-
loaded to your phone, open the
application.
9
10
User Setup Mobile App
In the above screenshot, the selected Method is Mobile App.
When you select this option, you need to activate the application
on your phone and click the Generate Activation Code button.
10
11
Mobile App Activation
An activation code, URL and barcode are generated and
displayed. Note: the code expires after 10 minutes and you
may generate a new code at any time.
11
12
Mobile App Activation
To activate your account do one of
the following:
• Enter the Activation Code and
the URL, or
• Tap the Scan Barcode button to
scan the barcode provided on
the Multi-Factor Authentication
User Setup page (see next
slide).
12
13
Mobile App Activation
• Use your phone’s camera to
capture the barcode from the
Multi-Factor Authentication User
Setup screen.
• Your phone captures the barcode
automatically.
13
14
Mobile App Activation
Once you have entered the Activation
Code and URL or scanned the
barcode, activation will start auto-
matically and may take a minute or two.
Please be patient.
14
15
Authentication – Mobile App
You should see your BHSF account
when activation is complete.
15
16
Authentication – Mobile App
16
Note: your PIN must meet the following criteria: • Must be numeric. (0-9)
• Must be between 4 and 20 digits long.
• Cannot contain 3 sequential digits. (i.e.: 12384)
• Cannot contain 3 repeating digits. (i.e.: 33384)
• Cannot contain any 4 digit subset from your phone number(i.e.: If phone number is 305-372-6658, PIN cannot contain 3053, 5372 or 6658 or any other 4 digit subset of the number)
On the Multi-Factor Authentication User Setup page:• Enter a PIN• Click the Authenticate Me Now
button
17
Authentication – Mobile App
By clicking the Authenticate Me
Now button, you will receive a
notification on your phone requiring
you to verify the request.
17
18
Authentication – Mobile App
To complete your sign in verification
to the User Portal, tap the PIN field.
18
19
Authentication – Mobile App
• Enter your PIN using the phone
keypad.
• Once you enter your PIN, tap the
Verify button.
19
20
Authentication – Mobile App
Once you have successfully
completed the sign in, tap the
Close button.
20
21
Getting Started – Security Questions
Upon completing the verification step for your selected method,
you are prompted to configure your security questions.
21
22
Getting Started – Security Questions
Select four questions, enter the appropriate answers,
and click the Continue button.22
23
Getting Started – Welcome
The enrollment process is now complete. You can now access any
MFA-based resource, use the user portal to enable a one-time bypass
for MFA authentication, change the notification method, update the
contact number, change your PIN, activate the mobile app (one of the
methods), or change your security questions.23
The message displayed changes based on the method selected.
24
Login with Recovery Questions/One Time Bypass
If your device is unavailable, you may initiate a one-time
bypass to access MFA-enabled resources.
To do this, use your security questions as your second
verification.
24
25
Login with Recovery Questions/One Time Bypass
Enter your Username and Password, then click the Log In
button.
Since the device is unavailable wait 60 seconds to be
prompted with your security questions.
25
26
Login with Recovery Questions/One Time Bypass
After the timeout, you are prompted to answer the four
security questions you configured during setup.
26
27
Login with Recovery Questions/One Time Bypass
Enter the appropriate information for each security question,
then click the Log In button.
27
28
Login with Recovery Questions/One Time Bypass
To initiate a one-time bypass, click the One-Time Bypass icon.
28
29
Login with Recovery Questions/One Time Bypass
Click the Confirm button if you are sure you want to continue.
29
30
Login with Recovery Questions/One Time Bypass
• By clicking Confirm, a one-time bypass is issued and Multi-Factor
Authentication will be skipped during your next sign on.
• You will be able to access a MFA-enabled resource using just
your AD credentials for either 5 minutes or one successful
authentication, whichever comes first.30