Articles in this section

Set up MFA for your account

MFA adds an extra layer of identity protection by requiring a verification token from your authenticator application during the sign-in flow.

MFA is mandatory for all customers and partners. Accounts running on free trial tiers are exempt until the trial period ends, and users authenticating via corporate Single Sign-On (SSO) bypass this local checkpoint unless an administrator enforces it company-wide.

Important

First, the account owner must complete their MFA setup. After finishing the setup, the account owner should enable MFA for other users.

If the account owner enables MFA for other users and the users set up MFA before the account owner, then they may encounter an issue when accessing their Celigo account because the verification code (PIN) is repeatedly rejected despite successfully linking to an authenticator app. To resolve the issue, the account owner must finish their setup, then disable and re-enable MFA for other users to successfully access their Celigo account.

Configure MFA settings for a user profile

In most cases, MFA is configured automatically when you first sign in. To change your settings, disable, or reset MFA, use the following steps.

  1. Go to  Account (the avatar at the top of the page), and then select  Security.

  2. Review the current status under My MFA settings.

  3. Select from one of the following actions:

    • Turn off MFA - Disable multi-factor authentication for your sign-in.

    • Change authenticator - Switch to a different authenticator app.

    • Reset MFA - Clear your current setup and configure a new method. Use this if you're having trouble with your current authentication setup.

      • To reset MFA for a specific account, choose the account from the Account to reset MFA list.

  4. Under Trusted device, select Manage devices to review and remove devices that can bypass MFA.

  5. Select Save.

Administer MFA settings for all users in an account

Account owners and administrators  can apply the following settings for all MFA users under Company MFA settings.

  1. Go to  Account (the avatar at the top of the page), and then select  Security.

  2. Select Company MFA settings from the left menu.

  3. Select Allow trusted devices to let users bypass MFA on recognized devices. When this is enabled, users don't have to enter a six-digit verification code every time they sign in.

  4. In Number of days until MFA is required, specify how many days of inactivity can pass before a trusted device requires a new MFA code. If you leave this blank, the default is 90 days.

  5. Select Save.

Using MFA with SSO

You can sign into the Celigo platform both SSO and MFA, and the account admin may require it. If your organization uses SSO, we recommend that you set up MFA with your SSO provider. First set up your SSO, and then MFA. (Users also must first sign in using SSO and then MFA.)

Trusted devices vs. authentication devices

A trusted device is both the browser you use (Chrome, Firefox, Safari) AND the computer you are using to sign in to integrator.io. Do not confuse trusted devices and authentication devices.

  • Trusted device - the computer and browser you use to perform tasks in integrator.io

  • Authentication device - a mobile device with an authenticator app installed that displays the six-digit code you use to confirm your identity

If you are accessing integrator.io from your work computer and you always use a specific browser, adding the computer/browser to the trusted device list eliminates the need for you to enter your six-digit authentication code each time you sign in.

Add an authentication device

To add a new authentication device, install an authenticator app on the new device and use the QR code or account and secret key to add your account to the authentication list in your authenticator app.

Delete a trusted device

A trusted device is the browser on the computer you use to perform tasks in integrator.io. Use the following steps to delete a trusted device from your account.

  1. Go to  Account (the avatar at the top of the page), and then select  Security.

  2. Click Multifactor authentication at the left.

  3. Under Trusted devices, click Manage devices.

  4. In Manage devices, click the Actions overflow (...) menu next to the device you want to delete, and click Delete device.

  5. Click Delete on the confirmation prompt to delete the trusted device from your account.

Reset MFA for another user

If you are the account owner or administrator that has been assigned MFA reset responsibilities for others, follow the steps below.

  1. Open the avatar at the top right of the platform, and select Users.

  2. From the Actions overflow (...) menu, click Reset MFA.

  3. Instruct the user to sign in and immediately reconfigure security settings.

What if I need to reset MFA, but I’m unable to sign in?

An account administrator should first seek assistance from an account owner. Barring that option, contact Customer Support and be prepared to provide the following information:

  • Your organization’s name

  • The company email address associated with the locked account

  • Availability in the near future for a Zoom meeting

  • A phone number where you can be reached

For the protection of your organization and your organization’s Celigo account, you will be contacted by the MFA-Reset Team for identity verification. During this call, be prepared to provide at least 2 valid forms of identity such as Driver’s License, Passport, or other government issued identification documents, and a business card or some other evidence of employment with the organization associated with your Celigo account.