Two-factor authentication (2FA):

 It is a specific type of multi-factor authentication (MFA) that strengthens access security by requiring two methods (also referred to as authentication factors) to verify your identity. These factors can include something you know - like a username and password - and something you have - like a smartphone app - to approve authentication requests.

2FA in Mindmatrix Bridge: 

2FA adds a second layer of security for your account and protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials. 

How to enable 2FA in Mindmatrix Bridge: 

Step 1: Login to your Profile. 

Step 2: Click on the profile icon on the right corner:

Step 3: Click on the View button:

Step 4: Click on the Security option:

Step 5: Click on Enable 2FA - Authentication App or on Enable 2FA Email:

Step 6: Download Google Authenticator or Duo Mobile on your smartphone if you are using the Authentication App option. If you are using the Authentication Email option, follow the step wizard to complete the process. Be prepared to access your email if you are using the email option:

● Google authenticator link for Android Smartphone: https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2&hl=en_IN&gl=US

● Google authenticator download link for Apple (iOS): https://apps.apple.com/us/app/google-authenticator/id388497605

Step 7: Either Scan the QR code or enter the code in the authenticator app and click on the next icon.: 

Step 8: Enter the Confirmation code generated on the authenticator app then confirm your password and click on the next button.

Step 9 : Click on “Finish” to keep the current session logged in or click on “click to login” to logout from current session and login again:

Steps to login using 2FA: 

Step 1: On the login page, enter the username, password and click on the Login button.

Step 2: Enter the 6 digit code generated in the authenticator app, confirm the password for the user you are trying to login and click on the verify button.  

Notes:

1. Confirmation code generated on the authenticator app changes after every 30 seconds. 

2. Every confirmation code has a validity of 5 min.

Feature Update / Overview: A new checkbox, “Remember This Device”, has been introduced in the Two-Factor Authentication (2FA) settings. When enabled, users will not be required to enter the authentication code upon subsequent logins from the same device for a predefined number of days.

How It Works:

1. Select “Remember This Device” During Login:
   During the 2FA login process, check the Remember This Device box.

2. Bypass Code Entry on Future Logins:
   The next time you log in from the same device, 2FA will automatically recognize it—bypassing the code entry step.

Extending the Duration

By default, the device is remembered for a set number of days. If you need more or fewer days, you can request an adjustment by emailing the support team at:
support@mindmatrix.net

Conclusion / Key Takeaways

• Increased Convenience: Avoid re-entering 2FA codes on trusted devices.

• Maintain Security: Even with this feature, 2FA remains an essential safeguard.

• Flexible Duration: Need more or fewer days? Contact support to adjust the setting

How to disable 2FA in Mindmatrix Bridge: 

Step 1: Login to your Profile using 2FA. 

Step 2: Click on the profile icon on the right corner:

Step 3: Click on the View button:

Step 4: Click on the Security option.

Step 5: Click on Disable 2FA - Authentication App

Step 6: Click on “Turn Off” and click on the next button.

Step 7: Enter the confirmation code generated on the authentication app, enter the password for the logged in user and click on the next button.

Step 8: 2FA is turned off, click on the Finish button to close the model.

A new enhancement to the Two-Factor Authentication (2FA) feature allows administrators to enforce 2FA completion by a specific deadline. This strengthens account security by ensuring all users complete 2FA setup within a defined timeframe, rather than indefinitely deferring the process.

This functionality can only be enabled by Mindmatrix Admins (MM Admins). To activate this feature, contact the Mindmatrix Support Team and provide the desired enforcement date.

Key Highlights

• Administrators can set a mandatory deadline for 2FA completion.

• The feature can only be enabled by Mindmatrix Admins through company settings.

• Users see a "Skip for Now" option until the deadline is reached.

• After the deadline, 2FA setup becomes mandatory for system access.

 

Setting a Mandatory Deadline

The enforcement date is configured by MM Admins through company settings. To set the deadline, the "mfa_mandatory_deadline" option must be selected from the dropdown, and the desired date specified.

• Until the specified date, users will see a "Skip for Now" option when prompted to complete 2FA setup.

• After the deadline passes, users will no longer be able to skip the 2FA setup process.

• Completing 2FA becomes mandatory for system access.

 

Behavior Before the Deadline

If the enforcement date is set in the future (for example, 10 days ahead), users will experience the following behavior:

• Users can log in normally to the system.

• The "Skip for Now" option will remain available on the 2FA setup prompt.

• 2FA setup can be postponed until the deadline date.

  
  

• If mandatory 2FA enforcement is enabled, users cannot disable 2FA from their profile.

• If mandatory enforcement is not enabled, users may disable 2FA by following these steps:

• Navigate to their User Profile.

• Click the Security tab (located in the lower left section).

• Manage 2FA settings from there.

Benefits

• Enhances account security by ensuring all users complete 2FA setup within a defined timeframe.

• Provides a transition period with the "Skip for Now" option, allowing users to prepare for 2FA setup.

• Centralizes control with MM Admins to ensure consistent enforcement across the organization.

• Prevents users from disabling 2FA once enforcement is active, maintaining compliance with security policies.

• Supports organizations with strict regulatory or compliance requirements around multi-factor authentication.

Conclusion

The Two-Factor Authentication mandatory enforcement deadline provides organizations with a structured way to roll out 2FA across all users. By allowing administrators to set a clear deadline while giving users a transition period to prepare, this enhancement balances security requirements with user experience. Once the deadline passes, 2FA becomes a strict access requirement, ensuring consistent security posture across the entire user base.