Multi-Factor Authentication (MFA) is used by many online systems as an extra layer of security.

MFA usually requires someone to enter a one-time security code whenever they sign into their account.  This code might be delivered via an email, text message or authenticator app.

Without MFA, an unauthorised person could sign into a user's account if they know (or guess) their password.  However, once MFA is enabled, the password alone is not sufficient - they also need access to the one-time security code.
 

How does MFA work for a Safeguarding Hub?

Once switched on, a security code is sent via email whenever anyone attempts to sign into the Hub.
 

How is MFA switched on?

Only a Hub Owner can switch on MFA as follows:

• Sign into your Safeguarding Hub  and go to Hub Settings at the bottom of the Main Menu
• Select Hub Security
• "Do you want to switch on Multi-Factor Authentication?" - answer Yes
• Press Save
   

Can MFA be switched off?

Yes.  If MFA causes any unexpected problems, a Hub Owner can swich it off.  Simply follow the above steps and change the answer to No.
 

Must we switch on MFA?

MFA is mandatory for larger Hubs, and it is strongly recommended for all others.