Multi-Factor Authentication (MFA), also known as Two-Factor Authentication (2FA), is a crucial security measure that requires you to provide two different forms of identification to verify your identity when logging in. This makes it significantly harder for unauthorized users to access your account, even if they have your password.
How MFA Works
MFA combines two of the following authentication factors:
Something you know: Your password or a PIN.
Something you have: A physical device like your phone, a hardware key, or a token.
Something you are: A biometric trait such as a fingerprint or facial scan.
For example, you might enter your password (something you know) and then a one-time code sent to your phone (something you have).
Note: Flight Schedule Pro has not enabled any biometric factors at this time.
Why MFA is Important
MFA provides a robust defense against various cyber threats, particularly credential theft. Even if your password is stolen, attackers cannot log in without the second factor. It also significantly mitigates the risk of brute-force attacks, making it nearly impossible for hackers to guess passwords. In our increasingly digital world, MFA is essential for safeguarding your sensitive data.
How to Setup MFA
MFA can be enabled at any time by navigating to your username in the upper right corner, and then clicking ‘My FSP Account’.
Supported Secondary Factors:
Email Codes
Authenticator Apps (e.g., Google Authenticator, Authy)
Backup Codes
Complete the steps to enable the various factors.
Email
You will receive a code sent to your username email account.
Upon successful confirmation, you will then be automatically sent an email upon each login where a secondary factor challenge is required.
Authenticator App
You will need to scan or copy the app string into your authenticator app of choice.
Upon successful confirmation, you will then be able to use your app for each login where a secondary factor challenge is required.
Backup Codes
These are single one time use codes and should be saved somewhere safe to be used to recover your account.
Logging into FSP with MFA
After enabling MFA, you will be asked to complete an authentication challenge upon logging in. You can also select to remember your device which will allow you to bypass entering a secondary factor for up to 30 days on the device you are currently using.
Authenticator App
If multiple secondary factors are enabled, you can set a default, and always select another factor to use for your convenience.
Best Practices
Your username is your email address.
All authentication challenges are sent to the email associated to your username.
You cannot change your username if it is being used as a secondary factor until your email is no longer used for backup codes. Upon changing your username, you can then resume its use as a secondary factor upon a successful MFA challenge.
Enable both an email and authenticator app.
This ensures you can still access your account in the event your email address ever gets compromised, or you should ever lose the phone/device where your authenticator app is installed.
Create and store backup codes.
Backup codes will only be shown one time, so be sure to copy them and keep them somewhere safe.
You can always regenerate backup codes in the event you need to, provided you still have access to one or more of your secondary factors.
Use a password app.
FSP enabled autofill on many of the popular password apps so you can keep the convenience of autofill without the need to copy and paste.