IBM logoEnterprise Cloud Management SupportContact Us
ArticlesArticles Most Popular ArticlesMost Popular Articles Most Helpful ArticlesMost Helpful Articles Submit A QuestionSubmit A Question
RSS Feeds
Skip Navigation
DrillDown Icon Table of Contents
DrillDown Icon Enterprise Cloud
DrillDown Icon Release Notes
DrillDown Icon Known Issues
DrillDown Icon Policies
DrillDown Icon Registration and Login
DrillDown Icon Infinicenter Console
DrillDown Icon Environments
DrillDown Icon My Account
DrillDown Icon Settings Tab
DrillDown Icon Users Tab
DrillDown Icon Billing Tab
DrillDown Icon Transactions Tab
DrillDown Icon Bandwidth Tab
DrillDown Icon Keys Tab
DrillDown Icon Catalog Tab
DrillDown Icon Support Tab
DrillDown Icon Disaster Recovery Tab
DrillDown Icon Multi-Factor Authentication
DrillDown Icon Certificate-Based Authentication
DrillDown Icon Enterprise Cloud API
DrillDown Icon Best Practices
DrillDown Icon FAQs
DrillDown Icon Troubleshooting
DrillDown Icon Enterprise Cloud Managed Edition
DrillDown Icon Sales and Support
DrillDown Icon Proprietary Statement
  Email This ArticlePrint PreviewPrint Current Article and All Sub-Articles
 
Multi-Factor Authentication

Multi-Factor Authentication

Multi-factor authentication provides an extra layer of security to a customer's environment. Multi-factor authentication requires more than one factor, or method, of authentication. Factors are usually defined as something you know, such as a password; something you have, such as a hardware token; or something you are, such as a fingerprint. Multi-factor authentication in the Enterprise Cloud is a two-factor authentication system that uses a password (something you know) and a telephone call (something you have), with a personal identification number or PIN (something you know) to validate the phone call, as the two factors.

Note: To deploy multi-factor authentication, the organization must acquire a license for each person that uses multi-factor authentication. Contact your service delivery manager for more information.

In addition to a user name and password, a user can have multi-factor authentication enabled with one or two phone numbers and a PIN. To access the environment, the user logs in with a user name and password. If the initial credentials identify the user as multi-factor authentication enabled, Infinicenter Console calls the primary phone number, or the backup number if the primary number fails to answer, and prompts for the PIN. Using the touch-tone keypad, the user enters their PIN. If the PIN matches, the user enters Infinicenter Console.

Multi-factor authentication is administered in several locations within Infinicenter Console.

Task Article
Add new user with multi-factor authentication Add a User under Manage Users
Enable multi-factor authentication for a user Enable Multi-Factor Authentication under Manage Users
Edit user's multi-factor authentication Edit Multi-Factor Authentication under User Settings
Disable multi-factor authentication for a user Disable Multi-Factor Authentication under Manage Users
Reset a user with multi-factor authentication Reset a User Account under Manage Users
Forgot My PIN Reset Your Multi-Factor Authentication PIN under Registration and Login

Personal Identification Number (PIN)

The personal identification number (PIN) is chosen by the user when registering for multi-factor authentication. The PIN can only contain digits and must be at least four digits. The PIN cannot be a subset of the phone number, all the same digit, or sequential digits.

Phone Number

One or two phone numbers can be configured for each user. The primary phone number is required. The backup telephone number is optional and is dialed if the primary number is not answered. Multi-factor authentication supports both North American and international telephone numbers.

North American Numbering Plan

Many countries and territories participate in the North American Numbering Plan (NANP) for telephone numbers. When entering the phone numbers for multi-factor authentication, NANP telephone numbers are entered by selecting United States/Canada as the Country on the Multi-Factor Authentication dialog. For countries participating in NANP, the country code (+1 in the table) is assumed and the telephone number is in the format of {3 digit area code}-{3 digit exchange code}-{4 digit subscriber number}.

Country Area Code
American Samoa +1 684
Anguilla +1 264
Antigua and Barbuda +1 268
Bahamas +1 242
Barbados +1 246
Bermuda +1 441
British Virgin Islands +1 284
Canada +1 514, +1 613, and many more
Cayman Islands +1 345
Dominica +1 767
Dominican Republic +1 809, +1 829, +1 849
Grenada +1 473
Guam +1 671
Jamaica +1 876
Montserrat +1 664
Northern Mariana Islands +1 670
Puerto Rico +1 787, +1 939
Saint Kitts and Nevis +1 869
Saint Lucia +1 758
Saint Vincent and the Grenadines +1 784
Sint Maarten +1 721
Trinidad and Tobago +1 868
Turks and Caicos Islands +1 649
United States +1 212, +1 213, +1 312, and many more
United States Virgin Islands +1 340

All Other Countries

For any country not participating in NANP, a country code is required and the telephone number is in a variety of formats. When entering the phone numbers for multi-factor authentication, non-NANP telephone numbers are entered by selecting Other as the Country on the Multi-Factor Authentication dialog.