Britive supports multiple authentication methods for extra security (Step-Up Authentication). This option can be configured to access profiles that require verification. Britive supports OTP and WebAuthn authentication methods.
- OTP: Uses a time-based, one-time password/passcode for user authentication.
- WebAuthn: This authentication allows you to use a biometric method, such as fingerprint reading or face recognition. It also supports the security keys or any device-specific authentication.
These options can be configured using Britive's User Settings.
Configuring MFA Devices
- Log in to the Britive portal.
- Click Settings from the upper right user icon.
- Configure the authentication method under the MFA Devices section:
- OTP: You can register only one OTP device. See Registering a new OTP Device for more information.
- WebAuthn: You can register multiple WebAuthn devices for a user. See Registering WebAuthn for more information.
Registering a New OTP Device
- Click Register to register any new device for OTP step-up verification. A QR code is displayed in a Register your verification device window.
- Use any Authenticator app to scan the QR code. Enter the key manually if you are unable to scan the QR code.
- Enter the OTP from the Authenticator app in the Britive portal.
- Click Register. On successful verification, the device is registered. The user can not re-register the MFA.
Contact the administrator to change or delete this registered device. You can register a new device only after an administrator deletes the existing device.
Registering WebAuthn
- Click Register to register a WebAuthn Device.
- Enter a friendly name in the Registration Name field.
- Click Register to start the registration process.
- The web browser or device prompts you to verify using either of these options:
- Fingerprint
- Face recognition
- Security key (e.g., YubiKey): Enter the Recovery PIN and click Confirm.
- On successful registration, the friendly name is displayed in the list of registered WebAuthn devices.