For an extra layer of security, you may now take advantage of our one-time password capability.
One-time password? What’s that? Until now, logging into ShalomCloud was a matter of entering an email address and a password. That is still the default.
However, if you enter the synagogue options panel, you’ll see three choices: To not use OTP, or to require OTP for all, or to have OTP be an individual option.
If you opt to require OTP, everyone logging into ShalomCloud will see a second login screen. At the same time, the system will send that user a numeric code, to the logon email; and, if there is a cell phone in the user’s profile, the system will also send the code via text message.
If you make the second factor an option for your synagogue, then you’ll use a checkbox for each individual who prefers to log on via both email/password, and the six-digit number sent via email and/or cell.
Please follow this video to see how to put this capability into action.
Some possible future enhancements:
Offering a preference between cell phone and email, to receive the code. For now, since cell phone is a new field in the user record, we’ll send to the email always, and the cell phone if it’s there.
Offering authentication via a phone app, such as Google Authenticator or Twilio Authy. This would mean scanning a bar code with your phone, and then using the phone app to retrieve the login code. This is considered a more secure way to implement MFA (Multi-Factor Authentication), but more complex.