To ensure only authenticated users gain access, we offer two factor authentication. This adds an additional layer of security on your accounts compared to traditional single factor authentication methods like username and password.
The following two factor authentication are available:
Two-Factor Authentication (also known as 2-Step verification or 2FA) is a version of Multi Factor Authentication, where you, in addition to something you know (such as your password), also provide a code from another device, such as a code delivered to you via SMS or a code from an Authenticator App on your mobile device.
Multi Factor Authentication is a broader term which also require at least 2 Factors for Authentication but also cover other methods such as just providing a code from an Authenticator App or by SMS. Such other factors could be your fingerprint scan, facial recognition, device recognition, or other more modern methods to provide a proof of something you have or something that you are.
Multi Factor- and Two Factor-Authentication are the most effective ways to protect your account against cybercriminals. You still use your username and a password, however, instead of gaining access straight away, you will be required to provide additional information.
To start using Authenticator App, you need to install it on your mobile phone. If you do not have it already, you can download the Authenticator App, for example Microsoft Authenticator or Google Authenticator, from your app store. You can then connect it to your Admincontrol account from Password and electronic ID settings. Once it is setup, using the Authenticator App for two-factor authentication is easy, and in addition to being secure it is also reliable and offers high quality of service.
Public eID schemes
For our Nordic users we offer public eID authentication schemes such as BankID (Norway), mobile BankID (Norway), Swedish BankID (Sweden), MitID (Denmark) and Finnish Trust Network (FTN).
These public eID schemes provide a very strong two factor authentication method and can be used by all Admincontrol users as long as they have a Public eID from their bank. If a user does not have a public eID assigned to them, they must first acquire this from their bank before they can link their Admincontrol user with their eID.
The system issues a one-time password to the user’s mobile phone (SMS two-factor) for each time the user tries to log on. The user must enter the one-time-password to complete the login process. This is the simplest two-factor solution that everyone can use, as it only requires the user to have a mobile phone assigned to their account.
As an alternative to SMS two-factor, we have implemented support for Buypass Code. This is a similar solution but based on a smart phone app and internet communication instead of SMS. Read more about how to activate Buypass: https://buypassdev.atlassian.net/wiki/spaces/BpCodeEN/pages/14090368/User+guides
Enforce Two Factor
To ensure that all of your portal users use two factor authentication at all times, two factor must be enforced by a setting to your portal. To enforce this contact Admincontrol Support.
The portal can also be configured to use SMS two factor for user registration. This means that the Administrator will have to register the users mobile number when inviting a new user. This function will prevent misuse of user invitations.