Britive supports multiple authentication methods for extra security (Step-Up Authentication). This option can be configured to access profiles that require verification. Britive supports OTP and WebAuthn authentication methods.

OTP: Uses a time-based, one-time password/passcode for user authentication.
WebAuthn: This authentication allows you to use a biometric method, such as fingerprint reading or face recognition. It also supports the security keys or any device-specific authentication.

These options can be configured using Britive's User Settings.

Configuring MFA Devices

Log in to the Britive portal.
Click Settings from the upper right user icon.
Configure the authentication method under the MFA Devices section:
1. OTP: You can register only one OTP device. See Registering a new OTP Device for more information.
2. WebAuthn: You can register multiple WebAuthn devices for a user. See Registering WebAuthn for more information.

Registering a New OTP Device

Click Register to register any new device for OTP step-up verification. A QR code is displayed in a Register your verification device window.
Use any Authenticator app to scan the QR code. Enter the key manually if you are unable to scan the QR code.
Enter the OTP from the Authenticator app in the Britive portal.
Click Register. On successful verification, the device is registered. The user can not re-register the MFA.

Contact the administrator to change or delete this registered device. You can register a new device only after an administrator deletes the existing device.

Registering WebAuthn

Click Register to register a WebAuthn Device.
Enter a friendly name in the Registration Name field.
Click Register to start the registration process.
The web browser or device prompts you to verify using either of these options:
1. Fingerprint
2. Face recognition
3. Security key (e.g., YubiKey): Enter the Recovery PIN and click Confirm.
On successful registration, the friendly name is displayed in the list of registered WebAuthn devices.