Overview
Multi-Factor authentication adds extra security to your account. This article explains how this new feature works and how it ensures your firm's safety and security.
How Multi-Factor Authentication Works
Multi-factor authentication adds an additional security step to the login process. You must enter a secret code to verify your identity, and only then can you access your MyCase account.
MyCase offers three ways to receive this secret code: SMS, Email, and the Google Authenticator Application. How you obtain the secret code will depend on your MFA method of choice.
During the MFA setup, you can select “Remember this device for 30 days,” meaning MFA will only be required every 30 days on your device. If you login into your MyCase account from a different device, you will be prompted for your MFA code. You can also choose to have MFA required on each login by not selecting this option.
Multi-Factor Authentication Enablement
MFA is required for your account. You will be prompted to set up MFA. You can skip this setup five times. After that, you are required to enable MFA.
On the initial MFA setup screen, you will see the three options: SMS, Email, and the Authenticator Application. Select the one you will use.
Setting Up SMS MFA
After choosing SMS as your MFA method, you will be asked to enter a phone number associated with your MyCase account. This phone number must be able to receive SMS messages.
Enter a phone number
Click Get Code
MyCase sends a code to the phone number entered
Enter the verification code on the next screen.
Click the checkbox to Remember this device for 30 days
Click Verify
Once the correct code is entered and verified, MFA is established, and SMS will be your MFA method.
Setting Up Email MFA
After choosing Email as your MFA method:
Enter an email to associate with your MyCase account. This email does NOT have to be your login email, but if you use the same email address for both accounts, please ensure your email credentials are extremely secure.
Click Get Code
You will receive a code from MyCase by email
Enter the code on the next screen
Click the checkbox to Remember this device for 30 days
Click Verify
Once you enter the correct code and verify, MFA will be established, and Email will be your MFA method.
Setting Up Google Authenticator Application MFA
You will be directed to the setup screen after choosing the Authenticator Application as your MF. The Google Authenticator application must be installed on your mobile device.
From inside the Google Authenticator Application:
Click the plus sign in the lower right corner to initiate.
Scan the unique QR code displayed on your screen (do not use the one in the image above, as it will not work).
Enter the code from the Google Authenticator app.
Once you enter the correct code and verify, MFA will be established, and the Authenticator Application will be your MFA method.
Best Practices
Before resetting MFA, the firm admin should confirm that the person they are speaking to is an actual employee.
We recommend having more than one Admin on an account if the MFA needs to be reset. If you are a solo admin, you must go through MyCase to rest your account; having more than one admin mitigates this need.
For a user to manage your firm’s Multi-Factor Authentication options, they must have permission to Manage your firm's preferences, billing, and payment options? checked as Yes.
If you use email as your authentication method, ensure your email credentials are extremely secure.
If you are the sole firm admin and need your MFA reset, click here for more information.