LP - Multi-Factor Authentication (MFA) Enrollment
1. Purpose of MFA Enrollment
The purpose of this functionality is to:
-
Allow Investment Café Investor Portal users to have a more secure login by requiring the user to login using 2 identifiers, something they know, and something they have. Something you know would be your password and something you have would be a cellphone or your desktop machine for example.
-
The user will be able to use MFA via a mobile device or desktop. This document outlines the steps to install and use the tool using either method.
2. Installation for Mobile Devices
When installing on mobile devices make sure you have passwords to your play store or iTunes account available if applicable. You will need it to install either application.
2.1 Google Authenticator
To install Google Authenticator, you need to locate the application in your app store.
-
Search for Google Authenticator in the search bar and select it from the drop down.
-
Click Install to install the application on your phone.
-
Click Open to begin the setup process.
-
On the next screen you will see a button, click Begin/Begin Setup. You will then be prompted to Add an account. You can do this by scanning a barcode or entering a code.
2.2 Twilio Authy 2-Factor Authentication
To install Authy 2-Factor Authentication (Authy), you need to locate the application in your app store.
-
Search for Authy 2-Factor Authentication in the search bar and select it from the drop down.
-
Click Install to install the application on your phone.
-
Click Open to begin the setup process.
-
The next screen is the Account Setup screen. You will be prompted to enter your cell phone number.
-
Enter the phone number, then your email address.
-
A popup appears to select how you would like to verify your account. Select Phone Call or SMS. Once you make your selection, you will receive your registration code via that method.
-
Click the plus sign to add your account. You will be asked for a password.
-
Enter the password sent to you after the numeric code.
![Authy backup password]()
9. You will then be prompted to Add an account. You can do this by scanning a barcode or entering a code.
3. Installation for Desktop Users
3.1 Authy 2-Factor Authentication
To install Authy 2-Factor Authentication (Authy)on your desktop, go to https://authy.com/download/.
1.Once on the Authy site, under Desktop, select the operating system you are currently using, then click Download.
2. The exe. file is ready. Click Run.
3.The following screen will appear. Enter your phone number and click Next.
4. Get Verification Code via one of the following methods: Existing Device, SMS or Phone Call.
5. Enter the code received.
6. When user is ready to complete the MFA setup, click “+” to add your first account.
7. Enter Code provided by the website. (The code that needs to be entered below will be provided when logging in to the site and the user follows the verification process.) Then click “Add Account”.
*Note: If user has multiple logins for one database, they will need to add an account for each user. Same applies if a user has access to multiple databases.
8. On the next screen you are prompted to enter your Account Name and Logo. Enter the Account Name (Database Name) and select an Icon. Any of the Generic colors is good.
9. Token length should be on 6-digit. Then click the Save button.
10. The next screen will display a 6-digit code to enter when completing the Verification process outlined under “Logging in to Site”. (The code changes every 30 seconds.)
*Note: If setup is not completed on the first visit, when the tool is reopened, it will pick up where the user left off. If user defers for any reason, they can continue the process on the next visit.
4. Logging in to Site
Once the system has been setup and users have installed one of the authentication tools, users are now ready to login to the site using MFA. For users who have no MFA Enrollment Due Date entered or the Due Date has expired, they will proceed as follows.
1. Upon initial login, users will receive a Security Verification dialog box. Click, Get Started Now, to proceed to the next step.
2. The next screen in the Verification process will walk the user how to install recommended apps, if they have not already done that step. It will also provide an image they can scan using their mobile device or a long code if using their desktop. Once they enter the code into the authenticator app, a 6-digit code will be available for the user to login to the site
3. Click on “I have a six-digit code”. The following box will pop up. Enter the code provided without spaces and click “Verify”.
4. Authentication is complete and the user is logged in. (*Exception, if user’s password expires, they will be prompted to change it, then they will be logged in.)
For users who have a MFA Enrollment Due Date entered, they will proceed as follows.
1.Upon initial login, users will receive a Security Verification dialog box. The user will have the option to click, “Get Started Now” to setup MFA Authentication or defer by clicking “Remind Me Later”.
2. Clicking on “Remind Me Later” will login the user as normal. If the contact’s password has expired, they will be prompted to change it upon login.
This material is provided for informational purposes only and is not intended to be relied upon as a forecast, research or investment advice, and is not a recommendation, offer or solicitation to buy or sell any securities or to adopt any investment strategy. The opinions expressed are subject to change at any time without notice. The information and opinions contained in this material are derived from proprietary and nonproprietary sources deemed by BlackRock to be reliable, are not necessarily all-inclusive and are not guaranteed as to accuracy. Performance and risk calculations, including those incorporated into eFront technology, are based on assumptions, historical correlations, and other factors (such as inputs provided by the eFront users) and are not assured to predict future results. All graphs and screenshots are for illustrative purposes only. BlackRock’s eFront platform is a financial technology platform designed for institutional, wholesale, qualified, and professional investor/client use only and is not intended for end investor use. eFront users undertake sole responsibility and liability for investment or other decisions related to the technology’s calculations and for compliance with applicable laws and regulations. The technology should not be viewed or construed by any eFront users, or their customers or clients, as providing investment advice or investment recommendations to any parties. For additional information on any of the descriptions contained herein, please contact your eFront Relationship Management representative. BlackRock may modify or discontinue any functionality or service component described herein at any time without prior advance notice to you.
In the U.S. and Canada, this material is intended for public distribution. In the UK, this material is for professional clients (as defined by the Financial Conduct Authority or MiFID Rules) and qualified investors only and should not be relied upon by any other persons. Please refer to the Financial Conduct Authority website for a list of authorised activities conducted by BlackRock. In the EEA, this material is for professional clients, professional investors, qualified clients and qualified investors. For qualified investors in Switzerland: This information is marketing material. This material shall be exclusively made available to, and directed at, qualified investors as defined in Article 10 (3) of the CISA of 23 June 2006, as amended, at the exclusion of qualified investors with an opting-out pursuant to Art. 5 (1) of the Swiss Federal Act on Financial Services ("FinSA"). For information on art. 8 / 9 Financial Services Act (FinSA) and on your client segmentation under art. 4 FinSA, please see the following website: www.blackrock.com/finsa. In Singapore, this is for use only with institutional investors as defined in Section 4A of the Securities and Futures Act, Chapter 289 of Singapore. In the provision of any of the services described herein, neither BlackRock (nor any of its affiliates) will be acting in a capacity as investment adviser or broker-dealer nor will it be performing the functions of an organized market or exchange (and has not been recognized as doing so by the Monetary Authority of Singapore). In Hong Kong, this material is intended for public distribution. The technology and the material have not been reviewed by the Securities and Futures Commission of Hong Kong. In Japan, this is for Professional Investors only (Professional Investor is defined in Financial Instruments and Exchange Act). In Australia, issued by BlackRock Investment Management (Australia) Limited ABN 13 006 165 975 AFSL 230 523 (BIMAL). The material provides general information only and does not take into account your individual objectives, financial situation, needs or circumstances. In Brunei, Indonesia, Philippines and Malaysia, this material is issued for Institutional Investors only. In Latin America, for institutional investors and financial intermediaries only (not for public distribution). No securities regulator within Latin America has confirmed the accuracy of any information contained herein. Please note that IN MEXICO, the provision of investment management and investment advisory services (“Investment Services”) is a regulated activity, subject to strict rules, and performed under the supervision of the Mexican National Banking and Securities Commission (Comisión Nacional Bancaria y de Valores, the “CNBV”). BlackRock does not provide, and it shall not be deemed that it provides through Aladdin and eFront technology, any personalized investment advice to the recipient of this document, by reason of its use or otherwise. These materials are shared for information purposes only, do not constitute investment advice, and are being shared in the understanding that the addressee is an Institutional or Qualified investor as defined under Mexican Securities (Ley del Mercado de Valores). Each potential investor shall make its own investment decision based on their own analysis of the available information. Please note that by receiving these materials, it shall be construed as a representation by the receiver that it is an Institutional or Qualified investor as defined under Mexican law. BlackRock México Operadora, S.A. de C.V., Sociedad Operadora de Fondos de Inversión (“BlackRock México Operadora”) is a Mexican subsidiary of BlackRock, Inc., authorized by the CNBV as a Mutual Fund Manager (Operadora de Fondos), and as such, authorized to manage Mexican mutual funds, ETFs and provide Investment Services. For more information on the Investment Services offered by BlackRock Mexico, please review our Investment Services Guide available in www.blackrock.com/mx. In South Africa, a provider who provides products or services to a client other than financial products or financial services, must disclose to the client the fact that the additional products or services are not regulated under the Act and therefore the client is not afforded the same protections in respect of those additional products or services that may apply in respect of the provision of financial products or services in terms of the Act. This document is for information purposes only and does not constitute an offer or invitation to anyone to invest in any BlackRock funds and has not been prepared in connection with any such offer. Issued by BlackRock Investment Management (UK) Limited, authorised and regulated by the Financial Conduct Authority. Registered office: 12 Throgmorton Avenue, London, EC2N 2DL. Tel: + 44 (0)20 7743 3000. Registered in England and Wales No. 02020394. For your protection telephone calls are usually recorded. Please refer to the Financial Conduct Authority website for a list of authorised activities conducted by BlackRock. Please be advised that BlackRock Investment Management (UK) Limited is an authorised Financial Services provider with the South African Financial Services Conduct Authority, FSP No. 43288.
©2023 BlackRock, Inc. or its affiliates. All rights reserved. BLACKROCK and eFront are trademarks of BlackRock, Inc. or its affiliates. All other marks are the property of their respective owners.