Multi-Factor Authentication

If your organization has integrated a third-party Single Sign-On (SSO) solution with our portals, then multi-factor authentication must be managed from within your authentication solution.

Protect your user account from unauthorized access by enabling multi-factor authentication (MFA). MFA is an additional security requirement that requires a time-sensitive tokenA 2FA token expires after a minute. This is a security measure to prevent an unauthorized user from authenticating to your account through the use of an old 2FA token. when logging into one of the following Edgio properties:

• CDN (my.edgecast.com)
• Streaming (cms.uplynk.com)
• Identity dashboard (manage.vdms.io)

This token, which confirms your identity, may be generated through either of the following methods:

• Authenticator Application

  Look up a time-sensitive token within a Time-based One-time Password-compatible (TOTP) authenticator application (e.g., Google Authenticator) whenever you are challenged to provide a two-factor authentication token.

• SMS Messaging

  Receive a time-sensitive token via a text message whenever you are challenged to provide a two-factor authentication token.

Quick Start

Perform the following steps to set up multi-factor authentication for the first time:

1. Log in to a Edgio (fka Edgecast) property.
2. Select whether to generate time-sensitive tokens through an authenticator application or text messages.

3. Perform either of the following procedures:

   • Authenticator Application (Recommended)

     1. Install a TOTP-compatible authenticator app (e.g., Google Authenticator, Duo, or Authy).
     2. From within your authenticator app, create a new account and then scan the QR code.

   • Text Message

     1. Provide your mobile device's phone number (E.164 format).

        Syntax (United States):

        +1 Area Code Phone Number

        Syntax (Other Countries):

        +Country Code Area Code Phone Number

4. Provide the time-sensitive token that was generated by either an authenticator app or text message.

   Upon successfully completing MFA setup, all future login attempts will require that you provide a time-sensitive token.

Authenticator Application

Look up a time-sensitive token within a Time-based One-time Password-compatible (TOTP) authenticator application (e.g., Google Authenticator, Duo, or Authy) whenever you are challenged to provide a two-factor authentication token.

To set up multi-factor authentication through an authenticator application

1. Log in to a Edgio (fka Edgecast) property. Upon successfully logging in, you will be prompted to set up MFA.

   If you are not prompted to set up MFA upon logging in, then you can modify your MFA configuration from the Security tab of your Identity dashboard (manage.vdms.io).

2. Click Select within the Authenticator App section.
3. If you have not already installed a TOTP-compatible authenticator app (e.g., Google Authenticator, Duo, or Authy), then you should download and install it now.

4. From within your authenticator app, create an Edgio account within your authenticator application.

   Automatically define the account's name and secret key by scanning a QR code. Otherwise, you will need to manually enter this information.

   Once your account is successfully created, your authenticator app will continuously generate a time-sensitive token.

5. In the Verification code option, type the time-sensitive token generated by your authenticator app and then click Verify.

   Upon successfully completing MFA setup, all future login attempts will require that you provide a time-sensitive token.

To use a different authenticator application or device

This procedure requires access to your authenticator account. If you no longer have access to your authenticator account, then you will need to reset your MFA configuration by contacting our customer support.

1. Disable authenticator application multi-factor authentication.
2. Perform steps 2 - 5 from the To set up multi-factor authentication through an authenticator application procedure.

To disable authenticator application multi-factor authentication

This procedure requires access to your authenticator account. If you no longer have access to your authenticator account, then you will need to reset your MFA configuration by contacting our customer support.

1. Log in to the Identity dashboard.
2. Navigate to the Security tab.
3. From within the Authenticator App section, click .
4. When prompted for confirmation, type your password within the Enter your current password to confirm delete option and then click Delete.

Google Authenticator

Google Authenticator is a software application that generates tokens through which you can verify your identity to Google services and third-party applications (e.g., a Edgio (fka Edgecast) property). This software application can be installed on your desktop, Android cell phone, or iPhone/iPad devices. Download links are provided below.

• Android
• iPhone and iPad (requires iTunes)

Authenticator App Troubleshooting

Token Does Not Work

If the token generated by your authenticator app does not work, check the following items:

• Is authenticator app MFA currently enabled?

  From the Security tab of the Identity dashboard, check whether the Authenticator App section has been enabled (). If you see an Enable button within this section, click it to enable authenticator app MFA.

• Are you using the current account?

  An authenticator app contains all of your accounts. This may include accounts created for other sites/applications and outdated accounts. An account is created whenever you configure authenticator app MFA. If you have configured it more than once, then you may have older accounts within your authenticator app that generate codes that will not work.

  • Verify that you are using the account that was created when your MFA configuration was last updated.
  • If you are unsure which account is being used for MFA, create an account by updating your authenticator app MFA configuration.

Inaccessible Account

If you no longer have access to your authenticator app, then you will need to reset your MFA configuration by contacting our customer support.

Locked Account

Your account is automatically locked for 30 minutes after six consecutive unsuccessful log in attempts. Both credentials and multi-factor authentication challenges count towards this limit. If you are locked out of your account, perform either of the following steps:

• Reset your password.
• Wait 30 minutes.

Remember this Computer

We currently do not support the ability to remember your computer. We plan on reintroducing the ability to remember a device in the near future.

SMS Messaging

Text messages containing time-sensitive tokens can be sent directly to your cell phone or messaging device via SMS. Setting up SMS messaging does not require the installation of a software application. Provide the phone number corresponding to your cell phone or messaging device. A text message containing a time-sensitive token will be sent to your phone.

The syntax for specifying phone numbers varies by location.

• Syntax (US-Based Phone Numbers):

  +1 Area Code Phone Number

  Sample Phone Number (Los Angeles, United States):

  +1 310 555 1212

• Syntax (Phone Numbers Outside of the US):

  +Country Code Area Code Phone Number

  Sample Phone Number (Rio de Janiero, Brazil):

  +55 21 5555 1212

Standard text messaging rates may apply. We are not responsible for any fees that your cellular network carrier may charge for message transmission and delivery.

To set up multi-factor authentication through text messages

1. Log in to a Edgio (fka Edgecast) property. Upon successfully logging in, you will be prompted to set up MFA.

   If you are not prompted to set up MFA upon logging in, then you can modify your MFA configuration from the Security tab of your Identity dashboard.

2. Click Select within the Text Message section.

3. Type your mobile device's phone number and then click Send Text Message.

   View syntax.

4. In the Verification code option, type the time-sensitive token that was sent to the above phone number via text message.
5. In the Enter your current password to confirm changes option, type your password.

6. Click Verify.

   Upon successfully completing MFA setup, all future login attempts will require that you provide a time-sensitive token.

To update your mobile phone number

This procedure requires access to your mobile phone. If you no longer have access to your mobile phone number, then you will need to reset your MFA configuration by contacting our customer support.

1. Disable text message multi-factor authentication.
2. Perform steps 2 - 6 from the To set up multi-factor authentication through text messages procedure.

To disable text message multi-factor authentication

This procedure requires access to your mobile phone. If you no longer have access to your mobile phone number, then you will need to reset your MFA configuration by contacting our customer support.

1. Log in to the Identity dashboard.
2. Navigate to the Security tab.
3. From within the Text Message section, click .
4. When prompted for confirmation, type your password within the Enter your current password to confirm delete option and then click Delete.

SMS Messaging Troubleshooting

Missing MFA Text Messages

If you are not receiving multi-factor authentication text messages, check the following items:

• Is text message MFA currently enabled?

  From the Security tab of the Identity dashboard, check whether the Text Message section has been enabled (). If you see an Enable button within this section, click it to enable text message MFA.

• Is it configured to send text messages to the phone number associated with your mobile device?

  If you are unsure, you can update your mobile phone number.

• Are you receiving other text messages?

  Verify that your messaging device has connectivity and that your SMS inbox is not full.

Locked Account

Your account is automatically locked for 30 minutes after six consecutive unsuccessful log in attempts. Both credentials and multi-factor authentication challenges count towards this limit. If you are locked out of your account, perform either of the following steps:

• Reset your password.
• Wait 30 minutes.

Remember this Computer

We currently do not support the ability to remember your computer. We plan on reintroducing the ability to remember a device in the near future.

New Phone Number

If you no longer have access to the phone number tied to multi-factor authentication, then you will need to contact your administrator to reset your MFA configuration.

Switching Token Generation Method

Switch token generation method by deleting your existing MFA configuration. After which, you may set up a new configuration.

To switch your token generation method

This procedure requires the ability to generate a MFA token. If you cannot generate a token, then you will need to reset your MFA configuration by contacting our customer support.

1. Log in to the Identity dashboard.
2. Navigate to the Security tab.
3. Click .
4. When prompted for confirmation, type your password within the Enter your current password to confirm delete option and then click Delete.

5. Set up your new MFA configuration by performing either of the following steps:

   • Authenticator App: Perform steps 2 - 5 from the To set up multi-factor authentication through an authenticator application procedure.
   • Text Messages: Perform steps 2 - 6 from the To set up multi-factor authentication through text messages procedure.

 

Edgecast CDN