(866) 597-1775
Knowledgebase: Compliance Products
Multi-factor Authentication (2FA)
Posted by Dan Shelton, Last modified by Dan Shelton on Oct 23 2020 09:46 AM

The multi-factor authentication portal improves your security by requiring an additional step when logging into your ProCirrus services. In addition to the added security, the system will allow you to manage your password recovery and resetting.    Note: Images may vary slightly.

ProCirrus offers 6 methods in addition to your normal password and we recommend firms enable at least 2 methods.  Note that your options may vary based on your firm's policies.

Six Multi-factor Options

  1. Receive a One-Time Password (OTP) by text to your phone (this is the default method)
  2. Enter a OTP from Google Authenticator (Free Android and IOS app)
  3. Enter OTP from your HOTP device - Usually from a credit card styled number generator (a.k.a. token)
  4. Receive a OTP via external email account (not your ProZone email account)
  5. Use a bio-metric device (i.e. fingerprint reader)
  6. Draw a memorized pattern in a grid. (this is a backup option if you have an issue with your primary method)

If your firm has OTP enabled, you will be redirected  from login.procirrus.com to https://myportal.procirrus.com.

Quick links...

 

How it works

Once subscribed to the service you will access your applications from your portal at https://myportal.procirrus.com.

At the My Portal login screen - simply enter your user name and password to begin the log in process (#1 and #2 in image below).  If you have already created an OTP method, you will be prompted for that.  If you have not set up your account, you will be stepped through that process.

Also note the "Set New Password" (#3 Below) and "Unlock/Reset Password" (#4 Below)  options which you can use should the need arise. 



If your account was set up to use your cell phone ,  external email or Google Authenticator for your OTP, you will be prompted to enter the code.  Note if you have issues (like you forgot your cell phone), click the "Access other OTP Options" link and you will be given options.  





OR - If you set up Google Authenticator - Just enter the 6 digit code on your mobile app


OR if your administrator set up your account with an HOTP device - Usually a credit card sized number generator. Just press the button (#1 below) and enter the 6 digit number (#2 below).

 


OR if you set up a grid pattern, you will be prompted to draw your memorized pattern. It may be helpful to activate the “Show Pattern While Drawing Option.” After you draw your pattern, click “Login”.

 

 

How to set up your new account - Text Enabled

Once subscribed to the service, navigate to https://myportal.procirrus.com.

Enter your username and password at My Portal Secure Login screen.


This will prompt you to enter a cell phone number to register the account.

Once your account is set up, you can add other available modalities as well as choose a different default method. 

 

In a few seconds, you will receive a text from support@procirrus.com to your phone:

 

 

 

Then enter the One Time Password (OTP) from your phone into the prompt.



Once you authenticate you will be sent to the Portal Page.

 


The Portal Page allows you to use the Single Sign-On Feature so once accounts are set up you only need to click them to enter.

  1. To enter your ProZone just click the ProZone icon and your ProZone page will open in a new browser
  2. If you have other single sign on applications (SSO) available, as in this example, they will be visible here.
  3. The “Settings” toggle will let you toggle back and forth between your applications and the settings you can edit. More on settings under “How to edit your account” below.


When you log out of the ProZone or the Portal be sure to log out of the other. The portal will not log you out of the ProZone and vice-versa.

 

How to set up your new account - HOTP Card Style

Once subscribed to the service, navigate to https://myportal.procirrus.com.

As an HOTP user, your card is already set up on your account.  When prompted to log in:

1) Press the button to get your OTP
2) Enter the OTP when prompted


Once logged into the portal you may click on the Settings option to add other approved modalities for back up.  

When the need arises you may need to "Re-Sync" your card.  To do this, open the HOTP tokens on the Administration page then:

1) Click Re-Sync
2) Press your button on your card and enter the first number
3) Then press the button again and enter the second number

This will connect your card to the server again. 



How to edit your account

Once logged into My Portal, you can edit your portal account by clicking on the setting button. This button will toggle you between Settings and the Application Portal (red box below).  Note this screen may have more options then those available to you.  The OTP options available to your firm have been determined by your firm administration.



Overview of the Account Management Options

  1. You can see when your password is set to expire and change it here
  2. Challenge questions, allow you to reset your password - they are not an option for a primary 2 factor method
  3. You can add or edit an external email as a One Time Password Option (don’t use your ProZone Email Account!)
  4. This allows you to choose which of the OTP options you want to use as well as your default method.  Only the options you have setup will appear. 
  5. You can edit which mobile phone numbers you want to use for your OTP. Make sure you recognize the phone you have selected!
  6. Mobile authenticator is for using APP based OTP - like Google authentication
  7. HOTP tokens allow you to set up token devices - like the credit card sized OTP generator. 
  8. Here you can enable a Grid Pattern. If you create a grid pattern here, you can select to use it as your OTP under the “OTP Delivery Methods”
  9. Web Key  is a service that will be available in second quarter of 2020.  It will allow the sue of bio-metric devices like finger print scanners. 

 

How to create a grid pattern for your OTP

Under the “Pattern-Based Authentication” you can add a grid as a OTP option.


1) Click on the “Enroll authentication pattern”
2) Enable the “Show Pattern..” option so you can see your pattern
3) After you draw your pattern, click “Continue” (obviously don’t use this pattern)
4) You will receive a success notice.

 

How to set up Google Authenticator

Under the “Mobile Authenticator” you can enable the Google Authenticator APP on your iPhone or Android Device.

1) Download the free Google Authenticator App from your phones App Store 
2) In the My Portal Account management screen, click "Enable mobile authenticator" 

3) Scan the QR code (#1 below) with your phones app and it will give you a OTP code


4) Enter that code in #2 above.

You are all set!

How to change your OTP option

You phone is the default option and once you set up either the secondary email account OR the grid pattern you may choose those as your OTP instead of your phone if you prefer.


Under the “OTP Delivery Methods” click the drop down to choose your preference.

How to reset your password

In addition to the option within the Settings portal, you may rest your password from the myportal log-in screen.

This will send you a OTP to your OTP option (phone, Grid or email) and you can reset your password.

IMPORTANT

  1. Your password must conform with your company’s password complexity policy.
  2. You must update your password on all other devices or those devices may lock you out of your account through auto-connecting with an incorrect password.

 

Forgot my phone... Problems with OTP

If you don't have access to your primary OTP option, like you forgot your phone, you can use a secondary option if you set one up.  Setting up a memorized grid is a great choice since you will always have it.  If you are unable to access your phone for your OTP, click the "Problems with the OTP" option and you will be offered your other methods.

 

In this example, this user had also set up a grid as a secondary choice.

 


Comments (0)
ProCirrus Support