For organizations that have Multifactor Authentication (MFA) enabled, the following process is used to validate the identity of the first-time users attempting to log in to IAM.
- On the Sign In page, click the First Time User link.
- When prompted, enter the User ID received in your Welcome email and then click Submit.
- Click OK on the Email Sent notification message. You will be redirected to the IAM Sign In page.
- Check the email address associated with your IAM user account. You will receive an email message containing a security code. The security code is valid for 15 minutes.
- Click the Create Your Profile link.
- On the Security Code page, enter the security code provided in the email and then click Submit.
- On the Set New Password page, enter and confirm your new password. The default password requirements set by Dayforce are that the password:
- Must be a minimum of 7 characters
- Must contain at least 3 of the following:
- Numbers
- Capital letters
- Lower-case letters
- Special characters including [~`!@#$%^&*()+=|\{}':;.,<>/?[\]""_-]
- Is case-sensitive
- Click Save and Proceed.
- On the Secret Questions page, select a question in each of the question fields.
You may not use the same question more than once. On the right side, enter your answer to each question. The answers you enter are masked for security purposes so use caution when entering your responses to avoid typos, misspellings, etc., that could prevent you from responding to the security question prompts at a later time. - Click Save and Proceed.
- On the Set Up Multifactor Authentication page, select the authentication method you would like to use.
In our example we show you how to set up the Smartphone App (Authy) which, once set up, enables you to verify your identity on your phone with just a tap. Alternatively, you can opt to have a text message, or an automated call sent to your phone with a verification code that must be entered to verify your identity. - Click Next.
- In the Primary Phone Number field, select the country code from the drop-down list.
- In the next text box, enter the telephone number with no dashes or spaces.
- In the Exten text box, enter an extension if needed.
- If you want to include a secondary phone number, select the Include Secondary Phone Number option and enter the secondary phone number.
- Click Next.
- To verify the phone number that you entered, a one-time code must be sent to the phone number you entered. Select how you would like to receive that code:
- Text Message – a text message is sent your phone
- Voice Call – a phone call is placed to your phone and an automated voice provides the code
- On the next page, enter the code that you received. If you did not receive the code, click Resend code to resend the code to the same number. Additionally, you can change the method of receiving the code by clicking the link below Resend code. In our example, we chose to receive the code by text message, so the link shown provides the option to Receive a code by voice call instead.
- Install the Twilio Authy app from the Apple App Store or the Google Play store and set up an account using the phone number you verified.
- Once you have installed the Authy app, click Next.
- In the Authy app on your phone, you will receive a security token. The security token is valid only for 20 seconds before a new key is generated.
- On the Multifactor Authentication page, enter the security token in the text box. You must enter the security token shown in the Authy app and click Next before the token expires.
- Click Continue.
This completes the setup of MFA. Users are directed to the IAM Home page or the landing page of the partner application.