Each user will need to log in and activate Google Authenticator for multi-factor authentication (MFA), which adds a layer of security for those logging in to make edits to our website. Here is how that process works:
- Download the Google Authenticator app to your phone (employees of Allegacy that VPN in should already have Google Authenticator on your phone)
- Log into Allegacy WordPress
- Click ‘Howdy, username’ in top right corner > Edit my profile
- Find “Google Authenticator Settings”
- Check the box next to “Active” and “Relaxed Mode”
- Update the Description to something that will make sense to you
- Click “Show/Hide QR code”
- On your phone open Google Authenticator, click + and point at the QR code on your screen not at the one in the screen shot below
- Scroll down the screen in WordPress and select Update Profile for changes to take effect
- (Optional) Copy the secret key some place safe. If you lose your phone it’ll make it easier to get back in.
Existing users who get a new phone may need to set up their MFA again. To do so, a WordPress Admin should select the user from the menu in the left navigation bar. UNCHECK the Active box under Google Authenticator Settings and click Update Profile at the bottom. Then instruct the user to follow the steps above.