Multi-Factor Authentication (MFA) adds an extra layer of security to your account by requiring a second verification step at login. This ensures your account stays secure even if your password is compromised.
What Is Multi-Factor Authentication?
MFA adds an extra layer of protection to your account. Even if someone gets hold of your password, they still wouldn’t be able to log in without also having access to something only you have—like your phone.
For physicians who access the Atlas.md app from multiple devices or locations, MFA helps keep sensitive data secure by making sure it’s really you logging in each time.
Types of Multi-Factor Authentication
Atlas.md supports two secure options for multi-factor authentication:
- Authenticator App (Recommended): This method uses an app on your phone (like Google Authenticator, Authy, or Apple Passwords) to generate a new login code every 30 seconds. It’s the most secure option because the codes are created directly on your device and don’t rely on external networks.
- SMS-Based Codes: This method sends a login code to your phone via text message. It’s still very secure and easy to use, but slightly less so since it depends on your mobile carrier. Before enabling multi-factor authentication, make sure every user on your account has a valid mobile number saved to receive the codes reliably.
Once MFA is turned on, all users will be prompted to complete the multi-factor authentication process the next time they log in. Depending on the method selected, they’ll enter the code shown in their Authenticator app or the one received via SMS.
For added convenience, users can choose to “remember” a device for 3 months. This option should only be used on personal, non-shared devices.
Recommended Authenticator Apps
We recommend using an authenticator app with encrypted backups and biometric protection to keep your accounts secure and accessible when switching phones or using multiple devices.
An authenticator app generates time-based, one-time passcodes (TOTP) used for multi-factor authentication. It adds an extra layer of security by requiring a unique code from your device in addition to your regular password.
When choosing an authenticator app, look for features like app-specific passwords, face or fingerprint unlock, and multi-device sync.
Some solid options include:
- Authy: A great all-around choice. It supports encrypted backups, multi-device sync, and a biometric lock. iOS | Android
- Google Authenticator: Includes support for encrypted backups and syncing across devices. iOS | Android
- Apple Passwords: iOS users can scan a QR code and save TOTP codes directly in the built-in Passwords app. iOS
How to Set Up Multi-Factor Authentication
Only account administrators have permission to enable or disable this feature. If you’re an account administrator and want to configure MFA settings for your entire team, here’s how to do it:
- From the top navigation, click Account, then Settings
- Scroll down to the Security Options section
- Click Update Settings
Then choose to activate or deactivate two-step login authentication. The feature is deactivated by default.
