Two Factor Authentication (2FA)

Mandatory Two-Factor Authentication

To enhance the security of your account, we are introducing mandatory Two-Factor Authentication (2FA) for all logins to the MySAU portal starting on August 26, 2024. If you do not have two factor authentication set up on your account, email authentication will be enabled automatically.

Overview

What is Two-Factor Authentication (2FA)?

Two-Factor Authentication (2FA) is a security feature that requires users to provide two different authentication factors when logging into their account. This ensures that even if someone knows your password, they still can't access your account without the second form of verification.

Two-Factor Authentication Methods

Authentication methods are the factors used to verify your identity. The methods used on our portal are:

1. Email Verification: A code sent to your registered email address.

2. SMS Verification: A code sent to your registered mobile phone number.

3. Google Authenticator: A mobile app that generates time-based one-time codes.

We recommend enabling at least two methods of 2FA to ensure you have a backup in case you lose access to one method.

Setting Up Two-Factor Authentication

To manage your two-factor authentication settings for your MySAU account:

1. Log in to the MySAU Customer Portal.

2. From the left navigation menu, click "Account".

3. At the top of the Account page, click the "Security" tab.

4. On the Security tab, you will see the Two-Factor Authentication section, which contains a dropdown listing the three available methods.

The method you select in the dropdown will be assigned as the default method. Any methods that have been previously set up will still be available to use while logging in, even if you change the selected option in the dropdown.

Email Authentication

Always Active: Email authentication will always be active on your account. No setup is required as the email address you use to log in to your account will be used for authentication.

SMS Authentication

To set up SMS authentication on your account:

1. In the dropdown menu, choose the SMS option
   

2. Select the appropriate country from the dropdown to the left of the phone number input.

3. Enter your phone number in the provided field. The country code for the selected country will be prefixed to the number automatically.

4. Click the "Send Code" button. A verification code will be sent via SMS to the provided number.

5. Enter the code in the provided field and press the "Verify Code" button.
   

If the code entered is correct, the page will refresh automatically, and your SMS authentication method will be set up. You will see your phone number at the bottom of the SMS setup box.

Changing Your Phone Number

If you wish to change the phone number at any point, you can return to this section and click "Change Mobile". This will bring you back to Step 1.

Changing your Default Authentication Method

After setting up SMS authentication, you can change the selected method in the dropdown to change your default method. Changing your default method will not disable SMS authentication, and you will still be able to authenticate on login using the provided number.

Google Authentication

To set up the Google Authenticator method on your account:

1. In the dropdown menu, select the Google Authenticator option.

2. If you do not have Google Authenticator installed on your mobile device:

   1. For Android devices, install Google Authenticator from the Google Play Store.

   2. For iOS devices, install Google Authenticator from the App Store.

3. Open the Google Authenticator app on your mobile device.

4. Follow the steps presented on the portal.

   1. Scan the barcode displayed on the portal or enter the provided code into your Google Authenticator app.

   2. Enter the authorization code generated by the Google Authenticator app into the provided field on the portal.

5. Press the "Complete Setup" button.

If the code entered is correct, the page will refresh automatically, and the Google Authenticator settings will be saved. You can now use Google Authenticator for logging in.

If you need to reset the authenticator, click the "Reset Authenticator" button. This will take you back to Step 2 of the authenticator setup process.

Resetting your Authenticator

If you need to reset the authenticator, click the "Reset Authenticator" button. This will take you back to Step 2 of the authenticator setup process.

Changing your Default Authentication Method

After setting up Google Authenticator, you can change the selected method in the dropdown to change your default method. Changing your default method will not disable Google Authenticator, and you will still be able to authenticate on login using your associated authenticator.

Logging In with Two-Factor Authentication

To log in with 2FA activated on your account:

1. Go to the MySAU portal login page.

2. Enter your email address and password.

3. After your login details are verified, the Two-Factor Authentication screen will be displayed.
   

You will have 3 minutes to complete the authentication process. A green bar at the bottom of the window indicates the time remaining. Complete the verification process within the time limit to log in successfully.

Your default method of authentication will be displayed initially. If you have alternate methods enabled, you can select them by clicking the "Verify your identity with another method" link at the bottom of the window.

Authentication Methods

Email Verification:

1. Click "Send Code to Email."

2. A verification code will be emailed to your account.

3. Enter the code in the provided field and click "Verify Code" to complete the verification.

SMS Verification:

1. Click "Send Code to Mobile."

2. A verification code will be sent to your nominated number.

3. Enter the code in the provided field and click "Verify Code" to complete the verification.

Google Authenticator:

1. Open the Google Authenticator app on your mobile device.

2. Find the code under the heading of your email address prefixed by "MySAU:".

3. Enter the 6-digit code in the provided field on the portal.

Trust This Browser for 30 Days

If you check the "Trust this browser for 30 days" box during the 2FA process, you won't be required to complete the 2FA process again for 30 days on the current device/browser. This option is useful for devices that you use regularly and trust, making your login process quicker and more convenient.