Secure your login with multi-factor authentication

Secure your login with multi-factor authentication

Multi-factor authentication (MFA) is an authentication method in which a computer user is granted access to an application only after successfully presenting two or more pieces of evidence (or factors) to establish identity. Because logging in with MFA requires that you have access to a separate physical device, the risk of a potential intruder gaining access to your account is much lower.

How does MFA work?
MFA relies on time-based, one-time passwords (TOTP). These one-time numeric passwords are supported by authenticator apps such as Authy and Google Authenticator that can be downloaded for use on your mobile device or your desktop computer.

When signing into an application with MFA, you will be prompted to enter your email and password as well as a temporary authentication code from the connected MFA device's authenticator app.

Setup MFA for your user login

Before you begin these steps, first verify that you have an authenticator app installed either on your mobile device or laptop/desktop computer. If you don't, install one now.

If you have never setup MFA for your login, you will be guided through the process upon your first login attempt. After entering your username & password on the Login screen, the next screen will prompt you to setup MFA. Using your authenticator app, you will scan the QR code, then enter the 6-digit code the authenticator app generates in the "authentication code" box. That's it!



If you have completed this process and are not able to login, contact support@delivra.com immediately.

Login recovery for mobile users

If your MFA device is your mobile phone, you need your mobile number saved to your admin profile in Delivra to receive the SMS recovery message. Follow these instructions to update your profile in Delivra:



  1. Login to Delivra, then click the User icon located at the top-right of your screen.
  2. Choose My Settings from the menu.
  3. Enter your mobile number in the box provided then click the Save button.


Update MFA to use a new device/app

If you have a new phone, or you need to use a different/new authenticator app for login purposes, you can easily remove the existing MFA connection from your user profile and replace it with a new one. Before you begin:

  1. You will need the old device/app to login initially and then the new device/app to complete the steps to connect MFA to your new device.
  2. You will need an authenticator app of your choice installed on the new device. The free authenticator apps we recommend using are Google Authenticator (iOS/Android) or Authy.
    If you are not permitted to use your mobile phone to authenticate, or prefer to use your desktop computer, download the extension for Google Authenticator compatible with Google Chrome, Firefox and Microsoft Edge.
  3. If you have lost your MFA device & need to connect a new one, you will not be able to follow the steps outlined here. You should contact Support immediately for assistance. Support will verify your identity & reset MFA on your user profile. Then, you will need to go through the MFA setup steps.
Step 1: Remove MFA for the old device
  1. Click the user icon located in to top-right corner of your Delivra homepage.
  2. Choose My Settings. 
  3. Click "Security" from the left menu.
  4. Scroll to find the MFA section & click "Remove MFA Device".
  5. You will be asked to provide two consecutive codes from the authenticator app on old device.
Step 2: Setup MFA on new device
  1. Click the user icon located in to top-right corner of your Delivra homepage.
  2. Choose My Settings. 
  3. Click "Security" from the left menu.
  4. Scroll to find the MFA section & click "Setup Device".
  5. A pop-up will provide information about supported authenticator apps, like Authy. If you're resetting MFA for a new device, you already have an authenticator app installed, so click "Next" to continue.
  6. Using your authenticator app, scan the QR code that's displayed on-screen in Delivra. Your authenticator app will start generating codes immediately & will cycle every 30 seconds.
  7. Enter two consecutive codes in the boxes on-screen. You may need to scroll down the page to find the code input boxes.
    1. Authentication Code #1 (1st code)
    2. Authentication Code #2 (2nd code)
  8. Click "Ok" after two codes have been entered.
  9. The MFA status will update to "Connected" on-screen.
After completing the reconnection steps, we recommend that you log out of Delivra and then log back in, confirming that you are prompted for a code & that the code generated by your authenticator app allows you to log in. 
If you have completed this process and are not able to log back in to your account, contact support@delivra.com immediately.

Important security notes

  1. Once MFA is enabled, your account can only be accessed after entering a code from your MFA device. If you do not have your MFA device with you, you will not be able to log into Delivra.
  2. If your MFA device is lost or stolen, contact support@delivra.com immediately. Once your identity has been verified, access to your account will be restored & you will need to walk through the MFA setup process upon next login.
  3. Support will never ask you for a MFA code and, like your password, you should never share MFA codes with anyone.

FAQ

What is a MFA device?

A MFA device is most commonly a smart phone, but other devices can be used. Depending on the app you choose, there may be a download for desktop or a browser extension available. The free authenticator apps we recommend using are Google Authenticator (iOS/Android) or Authy
If you can't use your mobile phone to authenticate or if you prefer to use your desktop computer, you can Download the extension for Google Authenticator compatible with Google Chrome, Firefox and Microsoft Edge & watch the setup process using the extension.

Why is Delivra requiring the use of MFA for users?

Delivra values the security and safety of information on our platform. Adoption of MFA for all user logins is a proactive approach to protecting customer data because MFA significantly improves the security of online accounts by introducing an extra layer of protection that's not solely reliant on passwords. It's a widely adopted and effective method for safeguarding sensitive information and preventing unauthorized access to your accounts.

Am I required to use my mobile device?

No, you are not required to use your mobile. Popular MFA apps like Google Authenticator & Authy have desktop downloads or browser extensions available. Watch the setup process for the Authenticator extension compatible with Google Chrome, Firefox and Microsoft Edge. 

If you prefer to use email as your method, contact support@delivra.com to enable it for your user.

What happens if I lose the device with the MFA app?

Please contact Support immediately. You will not be able to login to Delivra until access has been restored. Support will need your account name, name & email address, mobile number, and the date of your last login to confirm your identity.

Do I need to setup MFA for API administrators?

No, MFA is not available or required to authenticate API calls. Calls will utilize username & password for the API admin only.

Do I have to enter the MFA every time I login?

You will notice a checkbox on the login screen to "remember this device". Your device will be remembered and will not require MFA code unless/until your browser history has been cleared.



Can MFA be managed by other users?

Delivra requires multi-factor authentication for all user logins. Multi-factor authentication (MFA) must be set up by the individual end user themselves, it cannot be setup or managed by another Delivra user.

    • Related Articles

    • Manage your personal user settings

      You can manage user settings to control your personal preferences for which alerts you receive from the system, what shortcuts you see within the system, and more. To access your user settings, click on the user icon located in the top-right corner ...

    • Manage system users & roles

      There are two types of users in the system: Site administrator and Account administrator. An administrator is a person who can login and perform tasks in your Delivra account. What is a site? Delivra uses the term Site to describe the way our system ...

    • Manage system alerts

      Your account includes automated alerts that can be configured to send on topics like contact subscription and campaign performance. These alerts can be turn on, turned off, or customized. To get there, click the Settings icon in your left-hand ...

    • Manage general account settings

      General account settings apply to your entire account and these settings include your account's time zone, default segment selection for campaigns, a global reply-to setting for campaigns, and more. To get there, click the Settings icon in your ...

    • Manage footers

      Footers are automatically appended to the bottom of each outgoing campaign and it's purpose is to identify the sender of the email and provide opt-out options. All accounts are created with a default footer that includes the sender's company name, ...