Multi-factor authentication

IRIS Software Group is committed to continuously enhancing security for all our users and customers. Multi-factor authentication is a proven security method used across businesses to protect user identities and accounts.

Switching on multi-factor authentication increases your account security when signing into IRIS products. When logging into IRIS Elements, as well as entering your username and password, you are prompted for extra authentication information, typically provided by an external app. Supported methods for IRIS Elements include:

• Okta Verify — Use the Okta Verify app to authenticate using a push notification or by entering a temporary six-digit code. Download the app from the Apple Store or Google Play Store.
• Security Key or Biometric Authenticator — A security key is a physical device with a unique pin assigned to your account. Biometric authentication scans a body part, such as a fingerprint, to authenticate.
• Other authentication apps — This covers apps such as Microsoft™ Authenticator, Google Authenticator™, and the Authy™ app. Use the authenticator app to generate a temporary six-digit code when promoted at login time.

Customers making use of the IRIS Elements to Xero integration must have MFA turned on for the accounts used to connect to Xero.

Further resources

IBM^® have posted a thorough explanation of What is multi-factor authentication.

Microsoft^® have produced a study into the effectiveness of using multi-factor authentication. They have also blogged about how using MFA can help prevent 99.9% of cyber attacks.

Google^® have created a video explaining 2-step verification, an alternative methodology to multi-factor authentication.

HMRC themselves are working on an MFA solution.