Security
Setting up multi factor authentication for a new user
Multi factor authentication protects an account by requiring a second proof beyond the password. Setting it up cleanly for a new user avoids a lockout on day one.
Choose the method
The authenticator app is the strongest common choice and does not depend on cell signal. A text message code is a workable fallback. Avoid relying on a single method with no backup.
Walk the user through enrollment
- Have them install the authenticator app first
- Start enrollment from the security settings and scan the code with the app
- Confirm the first approval works before ending the call
Always set a backup
Register a second method or save backup codes. The most common MFA ticket is a user with a new phone and no way to approve. A backup method prevents that call entirely.
Note the recovery path
Record what to do if they lose the device, so the next technician can verify identity and reset the method safely rather than guessing.