Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Two-factor authentication (2FATFA) increases the security of our CMS by requiring a single-use code in addition to your password.

Info

SDP is rolling out this feature gradually. We’ll notify all users by email before the launch of 2FA TFA on your CMS.

How to set up

...

TFA

Next time you log in to your CMS account, you’ll be required to set up 2two-factor authentication.

  1. Navigate to your CMS login screen (e.g. content.vic.gov.au).

  2. Enter your username and password and click ‘Log in’.

  3. You’ll see a warning message ‘You need are required to enable set up two-factor authentication’.
    You can bypass this 3 times; after 3 times you’ll be locked out of the CMS.

    image-20240910-064051.pngImage RemovedScroll down and click image-20241126-034814.pngImage Added
  4. Click on the link to visit the TFA screen. Click on the ‘Enable two-factor authentication via email’ link. You’ll be asked to enter your password again and click the Confirm button.

    image-20241009-055239.pngImage Removedimage-20241126-035009.pngImage Added

  5. Tick the checkbox and click the Save button.

    image-20241009-055447.pngImage Removedimage-20241126-035141.pngImage Added
  6. The screen will change to show ‘TFA enabled’. You can now start working in the CMS.

    image-20241009-055622.pngImage Removedimage-20241126-035355.pngImage Added

How to log in using TFA

  1. The next time you log in, after entering your username and password and clicking the Log in button, you’ll see the following screen. You’ll see that the Verify button is greyed out. Click the Email me a verification code button. The screen will refresh and the Verify button will now be blue and available.

    image-20241009-055845.png

  2. Leave the CMS login browser tab open and go to your mail app/site to find the email with the code. Copy the code into the ‘Authentication code’ field and click on the Verify button.

  3. If you didn’t enter the code from your email before it expired, you can click the Resend button.

...

You get 6 attempts within a 5-minute period to get your 6-digit 2FA TFA verification code correctly.

...

If you are still receiving the ‘failed validation limit reached’ message after waiting 5 minutes, fill out an SDP support request. Be descriptive in your request so we can assist you as quickly as possible. 

Skip validation limit reached

You get 3 chances to bypass the TFA setup.

After 3 times skipping TFA setup, your CMS account will be blocked. You’ll see this message.

...

Fill out an SDP support request to have your user account TFA reset.