Multifactor Authentication

Multifactor Authentication (MFA) provides an additional layer of security for our users. With MFA, logging in to the platform requires an additional step: providing a six-digit token texted to your cellphone or a secondary email address. Subsequent sign ins to the Business Service Discovery and Migration Planning platform from the same device enables you to bypass the MFA portion of sign in until either 30 days has passed or you sign in from another device. When logging in from a different device, you'll be asked to re-authenticate with MFA.

To register for multifactor authentication:

1.

Sign in to the Business Service Discovery and Migration Planning platform. The Member Login screen opens, prompting you to enter multifactor authentication preferences.

2.

Enter both a Cell Phone number and a Secondary Email address, and select either one as a default. The information you enter should be where you wish to receive tokens for multifactor authentication from Flexera.

3.

Click Save Preferences. A second Member Login screen opens, prompting you to check your email for an activation code.

Note:This screen also includes a Click here link to make any necessary changes to your multifactor authentication preferences entered in step 2.

4.

Go to your email (the email used for sign in). You should receive an email from noreply@riscnetworks.com with the heading Confirm Your MFA Registration For RISC Networks. This email states: You have registered the following devices for MFA with RISC Networks:

•

Cellphone number

•

Email address

•

Default Device.

5.

If the preferences match what you entered in the portal and wish to register, click the Please click here to finalize your registration link (or copy the link and paste it in your browser). You will be redirected back to the portal, and after a moment, the Member Login screen opens stating that a token was sent to your default device.

•

If you do not have access to the default device (such as if you lost your cellphone), you may select the alternative option from the Default Device dropdown list and click Resend to deliver the token to the alternative device.

•

Similarly, if you did not receive the token, you can click Resend to redeliver it.

Note:Email tokens can take a few minutes to arrive, while cellphone tokens are typically delivered in a matter of seconds. Check spam/junk folders if the email doesn't arrive shortly.

6.

Enter the token that was delivered to your device into the Authentication Code box and click Login to authenticate the token.

•

If you entered a valid token, you will be directed to the Assessment Selection screen.

•

If you entered an invalid token, you can re-enter and try again or resend a new token and authenticate with it.