We are pleased to confirm the upcoming release for RSM's Client Portal. This will be available to you on Monday 6th February 2023.
...
We always value feedback, so please let your RSM contact know if you wish to discuss anything further.
All previous release notes can be found here: Client Portal release notes.
Key highlight: Multi-factor authentication & administration
...
Firstly, make sure you have an authenticator already downloaded on to your mobile device. If you have Only users with admin rights will be able to set this up, you will be able to apply MFA to any users you have access to. MFA is user specific, so will need to be applied to each user as required. If If you do not have admin rights please speak to your RSM representative.
In the top menu bar, go to admin - users. Search for the user you want to apply this to and go into their record. You will see a section called authentication. Using the dropdown for authentication type, select time-based one-time password. To set up a new user go to. LINK
IT SUGGESTS THAT RSM ADMIN USERS NEED TO IMPERSONATE THE USER? DO THEY? IF SO SURELY ALL USERS NEED TO SPEAK TO THEIR RSM REPRESENTATIVE ABOUT THIS?
Please note: You will need to make sure the active box is ticked within the details section as well.
How does the user login for the first time?
When the user logs in for the first time with their username and password. They will then be presented with a QR code, this needs to be scanned using the authenticator app the user has downloaded. The app will then provide you with a one-time 6 digit verification code, enter that in the client portal login page and click next. You will then be logged into to client portal. After the initial login, you will enter your username and password and then enter your 6 digit verification from your MFA app.
What happens if a user loses their mobile device or authenticator application
Admin users can reset.
Overriding the authentic - RSM ADMIN USERS ONLY - What does this do at client level?