Using your MFA recovery code

After successfully registering a credential, the application generates a recovery code. If your credential is temporarily unavailable, you can use your recovery code to log in. The recovery code can be used in lieu of the credential. There are no limitations on how frequently it can be used to log into the application.

The application stores only one recovery code per user. When a new recovery code is generated for a credential, the old recovery code is deleted. The Generate New Recovery Code option does not display unless at least one credential has been registered.

To use your recovery code, take these steps:

Note:  Before you begin, locate the recovery code that you saved when completing the credential registration process. For example, if you saved the code in a text file, locate the file and open it.

  1. Log in to the application following normal procedures (enter your user ID and password, then click Log In.) The browser displays a prompt such as: "Use your security key. Insert your key and touch it."

  2. Click Cancel. The application displays the Recovery Code prompt. The prompt includes a pass phrase that consists of 12 input boxes.

    • Optionally, click Show Hint. The last 6 digits of your recovery code display in the last input box. You can confirm you have the correct recovery code by comparing it to the segment shown by the hint. To remove the values from the text boxes, click Clear. If the hint was showing, it remains displayed.

  3. Copy the recovery code from the text file and click the cursor in the first Recovery Code input box.

  4. Click Paste or press Ctrl-v. The code fills in the input boxes.

  5. Click Log In.

    • If the log in is successful, the application Home page displays.

    • If the log in fails, you can try again. The system allows the same number of attempts as any other password (this is specified in Rule Management > Authentication Validation > Number of Failed Logins Rule.) If the final attempt is unsuccessful, the application Log In page displays. Enter your user name and password and try using the recovery code again or contact the Administrator for assistance.

Whether or not the recovery code log in is successful, the application sends a message to your Inbox or e-mail address with information about the event.

Related Topics

Disabling, enabling, or deleting MFA credentials

Registering your MFA credential

Registering your required MFA credential