Why we use MFA and how it works:
At Kpler, keeping your account safe is our top priority. That’s why we use Multi-Factor Authentication (MFA). It adds a quick extra step to verify your identity when you log in, making it harder for anyone else to access your account even if they know your password.
When you will be asked to enroll in MFA
You will be prompted to set up MFA in the following cases:
First-time login without MFA: If you haven’t set up MFA yet, you’ll be guided through the enrollment process the first time you sign in.
New device or browser: If you log in from a new device or browser and don’t have MFA set up, you’ll be prompted to enroll.
Higher-risk login: If our system detects unusual activity or a low trust score (e.g., a new location), you’ll need to set up MFA if it’s not already configured.
During enrollment, you can choose one of these methods:
Authenticator App: Use the Auth0 Guardian app, Google Authenticator, or similar apps.
Push Notification: Verify through the Commodities mobile app.
Phone Verification: Receive a code via SMS or phone call.
When You Will Be Asked to Complete an MFA Challenge
Once you have set up MFA, you may be asked to verify again in these cases:
Logging in from a new device or browser
Higher-risk or unusual login detected
You can verify using any of your enrolled methods: authenticator app, push notification, or phone verification.
First Time Setup
On the first time set up you can chose among 3 methods (different from email validation). Though email validation remains an alternative option in subsequent login.
Option 1: Notification via Auth0 Guardian App
1. Download Auth0 Guardian App: Install the Auth0 Guardian app from your phone's app store.
2. Initiate Setup in Kpler Terminal: Upon logging into the Kpler terminal, choose the MFA setup option.
3. Scan QR Code: Open the Auth0 Guardian app and scan the QR code displayed on the Kpler terminal screen.
4. Verify Setup: Follow the prompts in the Auth0 Guardian app to complete the setup process.
Option 2: Google Authenticator or similar
1. Download Google Authenticator or any other similar apps such as Okta Verify, Microsoft Authenticator
2. QR Code Verification: Upon login, you will encounter a page displaying a QR code. Open your preferred mobile security application that supports a second type of confirmation for websites and online services (such as Google Authenticator, Okta Verify, Microsoft Authenticator). Use the app to scan the QR code provided on the Kpler terminal page.
3. Recovery Code: Safely store the recovery code provided by the mobile security application. This code serves as a backup in case you encounter any issues with your primary authentication method.
4. Access Granted: Once the QR code is successfully scanned and authenticated, you are ready to enjoy the Kpler world!
Option 3: Phone SMS
1. Provide Phone Number: Enter your phone number during the MFA setup process in the Kpler terminal.
(Important: Do not put 0 after the country code otherwise the SMS will not be sent.
Correct example: +44123456789 | Incorrect example: +440123456789)
2. Receive SMS Code: You will receive an SMS with a verification code on your provided phone number.
3. Enter Code: Enter the code received via SMS into the Kpler terminal to complete the setup.
Option 4: Phone call
1. Provide Phone Number: Enter your phone number during the MFA setup process in the Kpler terminal.
(Important: Do not put 0 after the country code otherwise the SMS will not be sent.
Correct example: +44123456789 | Incorrect example: +440123456789)
2. Receive Phone Call: You will receive an automated phone call with a spoken verification code.
3. Enter Code: Listen to the spoken code and enter it into the Kpler terminal to complete the setup.
Subsequent Logins:
Using previously set up method or email one time password
Use your chosen MFA method (authenticator app, SMS, etc.) each time you log in when prompted. As long as you continue using the same browser without significant changes that would signal risk to Auth0, you should not be challenged with MFA repeatedly.
In addition to the chosen method, you can always request and use a one-time code sent to your email if needed.
Change of phone:
Transfer MFA Setup: If you change your phone but still have access to the same mobile security application (e.g., Google Authenticator, Auth0), you can transfer the MFA setup from your old phone to the new one. Most MFA applications provide instructions for transferring accounts between devices.
Re-enable MFA: If you are unable to transfer the MFA setup to your new phone (e.g., due to loss of access to the old phone), you will need to re-enable MFA on your new phone. This typically involves scanning the QR code provided by Kpler during the initial setup process or using the recovery code to set up MFA again.
Don’t have access to your phone:
Use the email one time password, that is always proposed fir subsequent MFA challenges.
Backup Recovery Code: If you saved the recovery code provided during the initial setup of MFA, you can use this code to regain access to your account. This recovery code serves as a backup in case you lose access to your primary authentication method (e.g., your phone).
If you have lost your recovery code, you can contact Customer Success to recover your account.