To ensure only authenticated users gain access, we offer two factor authentication. This adds an additional layer of security to your accounts compared to traditional single factor authentication methods like username and password.
What is two-factor authentication?
Two-Factor Authentication (2FA), also called 2-Step Verification, adds an extra layer of security by requiring a second proof of identity -like a code from an app or SMS -along with your password. It's a type of Multi-Factor Authentication (MFA), which also includes methods like fingerprint scans, facial recognition, or trusted device checks.
Both 2FA and MFA help protect accounts by making it harder for attackers to gain access, even if your password is compromised. You’ll still enter your username and password but also confirm your identity another way.
Available two-factor authentication methods for Admincontrol:
🔐 1. Authenticator App
Install an app like Microsoft Authenticator or Google Authenticator on your mobile. In Login & Electronic ID settings, select “Authenticator App” and scan the QR code. It will then generate one-time codes for logging in -secure, reliable, and unaffected by SMS delays or travel.
Once it is set up, using the Authenticator App for two-factor authentication is easy, and in addition to being secure it is also reliable and offers high quality of service.
🏦 2. Public eID (Nordic users)
For our Nordic users we offer public eID authentication schemes such as:
- Norwegian BankID
- Swedish BankID
- Danish MitID
- Finnish Trust Network (FTN)
These public eID schemes provide a very strong two factor authentication method and can be used by all Admincontrol users as long as they have a Public eID from their bank. If a user does not have a public eID assigned to them, they must first acquire this from their bank before they can link their Admincontrol user with their eID.
📱 3. SMS
The system issues a one-time password to the user’s mobile phone (SMS two-factor) for each time the user tries to log on. The user must enter the one-time-password to complete the login process. This is the simplest two-factor solution that everyone can use, as it only requires the user to have a mobile phone assigned to their account.
Enforce two-factor authentication
To ensure that all of your portal users use two factor authentication at all times, two factor must be enforced by a setting to your portal. To enforce this contact Admincontrol Support.
The portal can also be configured to use SMS two factor for user registration. This means that the Administrator will have to register the users mobile number when inviting a new user. This function will prevent misuse of user invitations.
If a user is a registered user in at least one portal with two-factor authentication required enabled, the user will always be asked to authenticate themselves through their chosen 2FA method when logging into Admincontrol.