Multi-factor authentication guide for users
- Kelly Collins
MFA is a two-step process. You will log in to RSM InTime as normal, and then required to enter a one-time password. This adds an additional layer of security to your data and login details, based on a password that only you know, and a one-time password on a device that only you have. Your agency may have advised you that MFA has been setup and you will need to apply this to your login. If the agency hasn't applied this, you can apply this to your own account.
There are 2 ways to do this:
Mobile application authenticator: this will generate a 6-digit passcode. You can download authenticator applications via app stores, the most common ones are google authenticator and microsoft authenticator. When you go into your app, you will be given a one-time password (which is time sensitive) to enter on the InTime login screen. Please note: If you apply QR Code as the authentication method, please make sure that you have a mobile application authenticator ready for when you next login.
SMS: you can receive a one-time 6-digit password (which is time sensitive) by text message to enter on the InTime login screen. Please note: the SMS option can only be available for selection if the agency has this activated. If the agency hasn't set SMS, this option will not be available on the dropdown.
How do I log in for the first time?: If using an authenticator; if using SMS
Logging in once MFA is set up
What happens if I have changed/lost my device?
How can I apply MFA to my own account?: If using an authenticator; if using SMS
How do I log in for the first time?
Your agency can decide to either: Allow you to choose to if you wish to apply MFA or make MFA mandatory. When you first log into RSM InTime with your username and password as normal you need to select an option from the authentication method dropdown.
The dropdown will show:
None - do not secure my account using multi-factor authentication - This will only be available if your agency has allowed you to choose to apply MFA.
QR code - To be used with a mobile authenticator application.
SMS text message - This will only be available if SMS messages is set up for the agency.
If using an authenticator
If you select QR code, a barcode will appear. Using the authenticator, scan the barcode.
The authenticator app will then produce a one-time 6-digit verification code, enter the code in the box provided and click check, a green success box will appear in the top right-hand corner, click continue. You will be logged into RSM InTime.
If using SMS
If you select SMS, a box will appear to enter your mobile number. Once entered click send, you will then receive a one-time 6-digit verification code, enter the code in the box provided and click check, a green success box will appear in the top right-hand corner, click continue. You will be logged into RSM InTime.
Please note: please make sure your mobile number is correct before clicking send. If you have entered the wrong mobile number, you will need to ask the agency to reset your passwords and start the process again.
Logging in once MFA is set up
Firstly, you will need to enter your username.
You will then see the box to enter your password plus the authentication code box.
With a mobile authenticator
When you enter your username, you will see an authentication code box appear under the password box, enter the 6-digit verification code from the authenticator app. Once you have entered the code, click log in.
Via SMS
If you are using SMS to receive the 6-digit verification code, you will see the same screen as above, but there will be a link above the log in button saying: send authentication SMS. Click the link.
Once you receive your code, enter it in the box, click log in. You will see the send authentication SMS becomes greyed out, the link will be disabled for 30 seconds. If you need to resend the code, you will need to wait until the link turns blue again.
What happens if I have changed/lost my device?
If you lose or change your mobile device, or have reinstalled the authenticator application, you may need to have MFA reset for RSM InTime. This will reset all passwords and disable MFA. You will be sent a temporary password to initially login, set up a new password, and then go through the initial MFA steps again as above.
Please note: You must contact the agency to reset this for you. The forgotten password link on your login page will not reset MFA for you. Only the agency can do this.
How can I apply MFA to my own account?
Click on your name in the top right hand corner and select change password.
In the multi-factor authentication section, the dropdown will show:
None - do not secure my account using multi-factor authentication - This will only be available if your agency has allowed you to choose to apply MFA.
QR code - to be used with a mobile authenticator application.
SMS - this will only be available if SMS messages set up for the agency.
If using an authenticator
If you select QR code, a barcode will appear. Using the authenticator, scan the barcode.
The authenticator app will then produce a one-time 6-digit verification code, enter the code in the box provided and click check. A green info is correct message will appear in the top right hand corner. Click save. MFA is now set up for your account.
If using SMS
If you select SMS, a box will appear to enter your mobile number. Once entered click update, you will see an info successful message appear. Click save. MFA is now set up for your account.