SMS Code Authentication Enterprise Access Management MFA
This
Overview
The Enterprise Access Management Remote Access workflow supports SMS text notifications to any mobile device that accepts SMS messaging, including devices not supported by Imprivata ID. With SMS text notifications, the user receives a code on his device, and enters the code on his computer to authenticate during the Remote Access workflow.
For users who do not have access to a mobile device, cannot receive a reliable data signal in their area, or do not want to install the Imprivata ID app, SMS Code Authentication is a convenient alternative for two-factor Enterprise Access Management Remote Access authentication.
NOTE: Bluetooth is not required for SMS Code Authentication.
Getting Started
For specific configuration steps related to the sections below, first see Planning an Enterprise Access Management MFA Implementation, and then see Installing and Configuring Enterprise Access Management MFA.
Rolling Out SMS Code Authentication to Users
Remote access users can enroll their phone number by two methods:
- Log in to a network computer with the Imprivata agent installed, and use the Imprivata enrollment utility;
- You can allow users working remotely to enroll after logging into their VPN gateway.
Troubleshooting
User Changes Phone Numbers — The user must contact their Enterprise Access Management administrator, who will delete the SMS Code enrollment. Then the user can enroll a new phone number.
User Replaces Their Mobile Device — If the user gets a new device, they do not need to do anything as long as they keep the same phone number. If a user also has an enrolled Imprivata ID app, their Imprivata ID enrollment must be disabled. See Hands Free Authentication for Imprivata Enterprise Access Management for MFA.
SMS Enrollment Deleted — If a user enrolls their phone number for SMS authentication, then does not use SMS authentication for a year, that enrollment is deleted. The user will not receive SMS messages for authentication.
