Menu

KCM GRC: Enable and Set Up Multi-Factor Authentication

Avatar
Lauren Ashley
Updated
Follow

How do I Enable and Configure Two-Factor Authentication or Multi-Factor Authentication on my KnowBe4 KCM GRC Account?

Enabling multi-factor authentication (MFA) or two-factor authentication (2FA) on your account will require an additional identity verification step at the time you log in. Once MFA is determined mandatory and configured for an account, our system will require the use of an authentication code generated by an authenticator application each time you log in to your account.

If you're an Administrator on your KnowBe4 KCM Governance, Risk and Compliance (GRC) account, or if your account holds sensitive information, it is recommended that you set up MFA for additional security.

 

JUMP TO:

Mandate MFA for All Users in KCM GRC
Mandate MFA for Individual User Accounts
Configuring Your Authenticator Application for KCM GRC
Set up MFA on Your Own Account

 

If you're an account admin, you can follow these steps to mandate 2FA for all users on your account:

  1. Ensure you have downloaded an Authenticator application on your smartphone. Possible apps include Google Authenticator, Authy, and LastPass, among others.
  2. To enable two-factor authentication for everyone in your account, simply click on Settings at the top-right of the page, then click on Account Settings.

 

  1. From the View Account screen, select the Manage Account Settings button on the top-right.

 

 

  1. From the Manage Account Settings screen, use the Secure MFA Login drop-down menu to select Mandatory

 

  1. Be sure to scroll to the bottom of the page and use the Save Account Settings button to save the changes made to your account. 

 

Note:

Selecting "Mandatory" for the Secure MFA Login option will require all users to set up MFA the next time they log into their account. You may want to be sure your KCM GRC users have an authenticator app downloaded to their smartphone prior to making this account-wide change.

 

Once you've selected the "Mandatory" option for MFA and saved your account settings, you'll be prompted to configure MFA for your individual account. Follow the steps below to configure your authentication application for KCM GRC. 

 

Back to Top

 

If you're an account admin, you can follow these steps to mandate 2FA for individual user accounts:

 

  1. Once you've logged into your account click Settings at the top-right of the page, then click Manage Users.

 

 

  1. Navigate to the user for which you'd like to mandate MFA, and click the Update icon (see below).

 

 

  1. Check the MFA Required box, and click the Update User button.

 

Once you've updated this user they will be prompted to configure their Authenticator Application upon their next login.

See the instructions below for configuring authenticator applications for KCM GRC.

 

Back to Top

 

Configuring your Authenticator Application for KCM GRC

If your account admin has mandated MFA for your account, you will be prompted to configure MFA upon your next login.

  1. Ensure you have downloaded an Authenticator application on your smartphone. Possible apps include Google Authenticator, Authy, and LastPass, among others.
  2. Using the authenticator application on your smartphone, capture the QR barcode shown in your KCM GRC account (pictured below). If this method is not successful, you also have the option to manually enter the Secret Token shown on this page. 
  3. Once your authenticator application has recognized this QR code (or Secret Token) it will add "KB4 Compliance" to your application and begin to render authentication codes. Enter the first code in the Verify Code 1 field in your KCM GRC account (KCM GRC will automatically verify the accuracy of the code you provide).
  4. Wait until your authenticator application renders the second code, then input this code into the Verify Code 2 field in your KCM GRC account.
  5. Once both codes have been verified, the "Enable Secure MFA Login" button will become active; click this button to complete the MFA setup. 

 

Back to Top

 

Set up MFA on Your Own Account

If you'd like to enable MFA for your own account you can follow the steps below to enable MFA. 

  1. Ensure you have downloaded an authenticator application on your smartphone. Possible apps include Google Authenticator, Authy, and LastPass, among others.
  2. Log into your account and click on your name at the top-right of the screen, then click on Profile.

 

  1. From the View User screen, select the Actions tab (see below).
  2. From the Actions tab, click the GO -> link under ENABLE MFA

 

  1. You will be directed to the Enable MFA screen where you will follow steps one through four from above (found here) to configure your authentication application for your KCM GRC account. 

 

 

Back to Top

 

Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.

Related articles