Organization settings

Enabling multi-factor authentication

This article applies to all users, organization admins, and third-party users in the PI2 platform

PI2 is the latest version of the Predictive Index software.
If you are using a legacy version of PI, this article will
likely not match your experience.
Which product version do I have?

Using a legacy version of PI?Click here for support

Multi-factor authentication (MFA) is a user verification method designed to protect your account from security breaches and cyberattacks. MFA helps prevent bad actors from accessing your account even when they’ve stolen your login email and password.

How does MFA work? 

MFA works by requiring you to provide an additional form of identity verification, or “factor,” on top of your email and password. The factors that The Predictive Index offers are authenticator app, email, and SMS.

When a login is attempted from an unknown location or device, MFA will trigger, prompting the user to verify their identity using a one-time-use code sent via their preferred MFA factor.

How to enable MFA (admins)

  1. Log in to the PI software.
  2. Click the gear icon () in the top-right of the navigation bar.
  1. You’ll land on the Administration page. 
  2. Select the Organization Settings tab.
  1. Click Multi-Factor Authentication on the left-hand side.
  1. Click the Enable MFA checkbox.
  2. Click Save Changes.

Note: You must be an organization admin to enable MFA for your organization. If you’d like to enable MFA, please reach out to an organization admin.

How to log in with MFA (all users)

  1. Enter your login credentials and click Log In.
  2. You will be presented with a QR code. You can scan the code using your preferred authenticator app, and a six-digit code will appear on your phone.
  3. If you’d prefer to use a different MFA factor, click “Try another method” below the QR code.
  • If you select email, a six-digit code will be sent to your email address.
  • If you select SMS, a six-digit code will be sent to your mobile number. You will have the choice to receive this code via either text message or voice call.
  1. Once you have received your code, enter the code and click continue. 

Note: The next time you log in, you will be prompted to verify your account with the MFA factor you selected above. To change your MFA factor, click “Try another method.” at the bottom of the login screen.

How to disable MFA (admins)

Although not recommended, the company administrator can turn off MFA at any time. 

To disable MFA:

  1. Log in to the PI software.
  2. Click the gear icon () in the top-right of the navigation bar.
  3. Select Administration
  4. Select the Company Settings tab.
  5. Scroll down to the Multi-Factor Authentication Settings section.
  6. Uncheck the Enable MFA checkbox.
  7. Click Save Changes.

How to reset a user’s MFA factor (admins)

In the event a user is unable to verify their MFA factor (e.g., they lose their phone), it is possible to reset that factor.

To reset a second MFA factor, please submit a ticket to our support team.

FAQ

Why should I use MFA?
Security incidents and data breaches have increased in recent years, wherein bad actors steal sensitive user data or programmatically engage in cyberattacks. Enabling MFA adds another layer of security to your account. With MFA, the likelihood of a bad actor accessing your account is significantly reduced.
What factors are available with MFA?
PI offers a choice between one of three MFA factors: authenticator app, email, or SMS.
I can’t enable the email or SMS factor. Why is this?
When you first enable MFA, you will be presented with a QR code. You can scan the code using your preferred authenticator app, and a six-digit code will appear on your phone.

If you’d prefer to use a different MFA factor, click “Try another method” below the QR code.
Is MFA enabled by default?
No, MFA is an opt-in feature. An organization admin must enable it for you to use it.
Can I enable MFA just for myself?
No. Once enabled, MFA will go into effect for all users under your company’s domain. MFA applies to all active PI products your company is subscribed to.
Does MFA capture or store any Personally Identifiable Information (PII)?
No. Enabling and/or using MFA does not give away any PII on the part of users.
I just got logged out of my account. Is there a reason for this?
As a security measure, any PI user is logged out when they are inactive for an extended period of time.
I received the following error: “Your account has been blocked after multiple consecutive login attempts.” Why?
Multiple invalid login attempts can temporarily block access to your account. To restore access, please submit a support ticket.
I’m having trouble receiving my MFA code. What should I do?
Here are some troubleshooting tips:

Email
1. Check your spam or junk folder.
2. Make sure you’ve safelisted noreply@mailer.predictiveindex.com.
3. If you still don’t see the code, click Resend on the MFA screen. 

SMS
1. Ensure your phone has a strong cellular signal.
2. Connect to Wi-Fi if your carrier allows Wi-Fi calling.
3. If you still don’t receive the code, click Resend on the MFA screen.

Authenticator App
1. Unable to scan the QR code? Click the “Trouble Scanning?” link.
2. Not receiving a code? Verify that you have an authenticator app installed on your phone.
3. Code not working? Be sure to enter it before the authenticator resets (usually every 30 seconds).

For additional support, visit our Troubleshooting Guide.

Additional support


Not finding the article you need? Spot a typo inaccuracy? Let us know.

Having technical issues with your software? Contact us here.