To ensure only authenticated users gain access, we offer two factor authentication. This adds an additional layer of security on your accounts compared to traditional single factor authentication methods like username and password.
The following two factor authentication are available:
The system issues a one-time password to the user’s mobile phone (SMS two-factor) for each time the user tries to log on. The user must enter the one-time-password to complete the login process. This is the simplest two-factor solution that everyone can use, as it only requires the user to have a mobile phone assigned to their account.
Public eID schemes
For our Nordic users we offer public eID authentication schemes such as BankID (Norway), mobile BankID (Norway), Swedish BankID (Sweden), NemID/MitID* (Denmark) and Finnish Trust Network (FTN).
These public eID schemes provide a very strong two factor authentication method and can be used by all Admincontrol users as long as they have a Public eID from their bank. If a user does not have a public eID assigned to them, they must first acquire this from their bank before they can link their Admincontrol user with their eID.
*MitID is the future identity and authentication solution in Denmark, that will replace NemID. All end-users with an existing NnemID will be enrolled in a migration process starting October 2021which is currently ongoing. The end-user migration is driven by Digitaliseringsstyrelsen in Denmark.
As an alternative to SMS two-factor, we have implemented support for Buypass Code. This is a similar solution but based on a smart phone app and internet communication instead of SMS. Read more about how to activate Buypass: https://buypassdev.atlassian.net/wiki/spaces/BpCodeEN/pages/14090368/User+guides
Enforce Two Factor
To ensure that all of your portal users use two factor authentication at all times, two factor must be enforced by a setting to your portal. To enforce this contact Admincontrol Support.
The portal can also be configured to use SMS two factor for user registration. This means that the Administrator will have to register the users mobile number when inviting a new user. This function will prevent misuse of user invitations.