Multi-Factor Authentication (MFA) With Single Sign-On (SSO)
Introduction to MFA Requirements for Supplier Users
To meet necessary security requirements (such as those associated with DFARS) a company can require their suppliers to enable multi-factor authentication (MFA) in Net-Inspect as a precondition to adding, updating, or viewing that company's technical data in the Net-Inspect software. This means that when logging in, users must provide secondary authentication in the form of a randomly generated passcode or "push notification," in addition to their Net-Inspect credentials.
Net-Inspect employees will typically work with the company to notify the Setup Administrators of each of their suppliers' Net-Inspect accounts when this security policy change is set to occur. Upon arrival of that date, all users at each supplier will need to use MFA before logging in to the Net-Inspect software, or else be unable to handle that customer's data:
Your company's Net-Inspect Setup Administrators are responsible for satisfying this requirement by enabling Net-Inspect's MFA capability in your company's own Net-Inspect account. The following guide will walk you through all necessary setup procedures.
If your company does has an internal web portal already linked to Net-Inspect, then you should confirm that users' MFA information is being passed to Net-Inspect during the SSO "handshake" process. For detailed instructions, please refer to the following guide: Net-Inspect SSO MFA Integration Requirements
If your company does not have an internal web portal linked to Net-Inspect, or your company portal does not not use MFA, then instead of proceeding with this guide, please instead refer to the Multi-Factor Authentication (MFA) guide.
Navigating to the Multi-factor Authentication Setup page
After logging in to Net-Inspect, you can find the Multi-factor Authentication Setup page by following these steps.
1. Click the gear-shaped Setup button in the top-right of any screen
2. Select "User Management"
3. Select the "Access Control" menu tab
4. Select the "Multi-Factor Authentication" menu
If the "Multi-factor Authentication" menu is not visible here, then this means that none of your customers has yet made the option available to their suppliers. Check back later or ask a customer to provide you with information.
Enabling Multi-factor Authentication
After reaching the Multi-Factor Authentication Setup page, mark the checkbox labeled "Require all internal users to provide secondary authentication upon login".
If your users already utilize MFA when logging in to an internal company portal, and this portal has already been linked to Net-Inspect, then mark the checkbox labeled "All internal users will provide secondary authentication via Single Sign-On (SSO) rather than using Net-Inspect's MFA methods" and then click the Save Changes button.
If your company uses an internal portal to gain Net-Inspect access but does not currently require MFA during portal login, then your company can choose to either begin requiring MFA during portal login, or can allow users to log in to the Net-Inspect software through the Net-Inspect web page instead. In the latter case, follow the steps for "Option B" below.