Multi-Factor Authentication (MFA) is a secondary login step used to increase MarketSuite security, which is currently only required for aggregators participating in Southern California Edison programs. Users must first pass username and password authentication and then enter a code sent to the user’s phone or mobile phone associated with their user profile. This article provides an overview of the MarketSuite MFA options and how to use them.
Note: APX has implemented MFA security using Twilio’s Authy service. Additional information about MFA and Authy can be found at this link.
APX Multi-Factor Authentication
After a user successfully logs into MarketSuite using their username and password, the user is presented with the Two-Factor Authentication screen displayed below. Users have four options for completing the secondary authentication, including using the Authy App, which can be downloaded to your mobile phone.
- A text will be sent with the authentication code to the user’s primary phone number.
- The user will receive an automated phone call to the user’s primary phone number providing the authentication code.
- The user is prompted via the Authy App to approve or deny access, which will automatically complete the secondary authentication.
- The user can enter a token provided via the Authy App to gain access.
The Authy App
The Authy App is the quickest way to complete the MFA process. It eliminates the need for either (1) entering a code if the One Touch Verification process is used or (2) the time it takes to send the code to the user’s phone if the user enters the Authy Token. Note: Once the app is installed on your mobile phone, the connection between MarketSuite and the app is generated automatically when logging into MarketSuite and initiating the One Touch Verification process.
One Touch Verification
When a user selects One Touch Verification, a request is sent to the Authy App associated with the user’s primary phone number identified in the user’s MarketSuite profile. The verification screen displayed to the left will pop-up allowing the user to complete the login process by simply pressing “Approve”.
If the user did not attempt to login to MarketSuite and the One Touch Verification screen comes up on the user’s mobile phone, the user should “Deny” the request and contact their MarketSuite system administrator. This scenario may indicate someone has tried to login to your account.
When a user selects Verify Using Authy Token, the user simply enters the 7-digit token that is continuously displayed in their Authy App. Simply open the app to see the currently active token.
The token changes every 20 seconds. The app displays a count down of how many seconds until the token expires.
Note: You may find Authy is used for MFA for multiple software applications you access. They will be listed on the bottom of the app UI. Each system will have a unique token, so make sure to select the appropriate system token to login successfully.
Changing Your Contact Information
To help ensure MarketSuite has the latest contact information for users, a new Change Contact Info screen has been added to MarketSuite. The screen is accessed by selecting Administration from the menu bar and then Change Contact Info. To initiate an update to either the Primary Mobile Phone and/or Secondary Phone, select the country from the dropdown, update the phone number and click Save. Note: The screen has several built-in validations for phone number format. The Save button will only become enabled when the phone number passes the validations.