Enabling Multi-Factor Authentication
Setting Up Text Message (SMS) MFA
Setting Up Email MFA
Setting Up Google Authenticator MFA
Best Practices
Overview
Multi-Factor Authentication (MFA) adds extra security to your account. This article explains how this new feature works and how it ensures the safety and security of your firm.
How Multi-Factor Authentication Works
MFA adds an additional security step to the login process. You must enter a secret code to verify your identity, and only then will you be able to access your MyCase account.
MyCase offers three methods for receiving this secret code: SMS, Email, and the Google Authenticator Application. The method you use to obtain the secret code will depend on your chosen MFA method.
During the MFA setup, you can select 'Remember this device for 30 days,' which means MFA will only be required every 30 days on your device. If you log in to your MyCase account from a different device, you will be prompted for your MFA code. You can also choose to have MFA required on each login by not selecting this option.
Enabling Multi-Factor Authentication
MFA is required for your account.
You will be prompted to set up MFA.
You can skip this setup five times.
After that, you are required to enable MFA.
On the initial MFA setup screen, select the method to authenticate your account by choosing:
Text Message (SMS).
Google Authenticator App.
Email.
Setting Up Text Message (SMS) MFA
After choosing SMS as your MFA method, you will be asked to enter a phone number associated with your MyCase account. This phone number must be able to receive SMS messages.
Enter a phone number.
Click Get Code.
MyCase sends a code to the phone number entered.
Enter the verification code on the next screen.
Click the checkbox to Remember this device for 30 days
Click Verify.
Once the correct code is entered and verified, MFA is established, and SMS will be your MFA method.
Setting Up Email MFA
After choosing Email as your MFA method:
Enter an email to associate with your MyCase account. This email does NOT have to be your login email, but if you use the same email address for both accounts, please ensure your email credentials are extremely secure.
Click Get Code.
You will receive a code from MyCase by email.
Enter the code on the next screen.
Click the checkbox to Remember this device for 30 days.
Click Verify.
Once you enter the correct code and verify, MFA will be established, and Email will be your MFA method.
Setting Up Google Authenticator MFA
You will be directed to the setup screen after selecting the Authenticator Application as your multifactor authentication (MFA) method. The Google Authenticator application must be installed on your mobile device.
From inside the Google Authenticator Application:
Click the plus sign in the lower right corner to initiate.
Scan the unique QR code displayed on your screen (do not use the one in the image above, as it will not work).
Enter the code from the Google Authenticator app.
Once you enter the correct code and verify, MFA will be established, and the Authenticator Application will be your MFA method.
Best Practices
Before resetting MFA, the firm admin should confirm that the person they are speaking to is an actual employee.
We recommend having more than one Admin on an account if the MFA needs to be reset. If you are a solo admin, you must go through MyCase to reset your account; having more than one admin mitigates this need.
For a user to manage your firm’s Multi-Factor Authentication options, they must have permission to Manage your firm's preferences, billing, and payment options? checked as Yes.
If you use email as your authentication method, please make sure your email credentials are extremely secure.
If you are the sole firm admin and need your MFA reset, click here for more information.