MFA - Multi-Factor Authentication for Team Members (New Permissions)
IMS provides Sponsors the ability to turn on two-step authentication for Team Members login, which supplies an additional layer of security on your IMS account. If Multi-factor Authentication is enabled for the account, all Team Members will be required to enter a single-use confirmation code to verify their identity.
*Please note - MFA is available for the GP/Sponsor Portal, it is not available for investors at this time.
To enable MFA, please follow these steps.
Step 1:
Only Team Members with Sensitive Data Access will be able to enable MFA for the account. To view which Team Members have Sensitive Data Access, navigate to your Profile > Admin Settings > Team Members. Here you will see a column labeled "Data Access." If there is a "Yes" under this column, under a profile name, they have Sensitive Data access turned on.
Any Team Members with a YES under the 'Data Access' column can proceed with enabling MFA. If you need a Team Member granted Sensitive Data Access, please email support@imscre.com.
Step 2:
Navigate to your Profile > Admin Settings. You will be defaulted onto the Details tab, scroll down the page until you see the section labeled Multi-Factor Authentication.
Step 3:
Turn the green toggle on to enable MFA. You may choose to select Email, SMS or both MFA methods. If both are selected, the team member will select which method they'd like to use upon logging in. If SMS is enabled but the team member does not have a verified phone number associated to their account, they will be prompted to enter their phone number upon their next log in.
Click save at the bottom right corner of the screen once finished.
After MFA is turned on for the account, all Team Members will be prompted to enter a confirmation code upon logging in. The code will be sent to the email or phone number listed in IMS that is associated to the Team Member. If a Team Member wants to by-pass the two-step authentication upon their next login, they can select 'Remember Me' and the Team Member will not have to enter a code for 30 days.
