{"id":77192,"date":"2023-06-05T13:09:30","date_gmt":"2023-06-05T17:09:30","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&#038;p=77192"},"modified":"2025-02-04T16:19:55","modified_gmt":"2025-02-04T21:19:55","slug":"mfa-for-users","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/mfa-for-users","title":{"rendered":"MFA Guide for Users"},"content":{"rendered":"\n<p><em>If you are a JumpCloud Admin or want to learn about administrative MFA configurations, see  <\/em><a href=\"https:\/\/jumpcloud.com\/support\/mfa-for-admins\" target=\"_blank\" rel=\"noreferrer noopener\"><em>MFA Guide for Admins<\/em><\/a><em>.<\/em><br><br>Multi-factor Authentication (MFA), sometimes referred to as Identity Verification or Two-Factor Identification (2FA), helps secure access to the resources you use everyday by asking you to prove who you are with multiple factors. When your IT Admin requires you to use MFA, you need to provide your username and password and an additional factor to log in. This additional factor can be something you know, like a PIN, something you have, like a security key, or something you are, like a fingerprint.<\/p>\n\n\n\n<p> You may be required to use one or more of the following MFA Factors with your JumpCloud user account:<\/p>\n\n\n\n<ul>\n<li><a href=\"#about-jumpcloud-go\">JumpCloud Go<\/a><\/li>\n\n\n\n<li><a href=\"#about-push-mfa\">Push MFA<\/a><\/li>\n\n\n\n<li><a href=\"#about-verification-code-(totp)-mfa\">Verification Code (TOTP) MFA<\/a><\/li>\n\n\n\n<li><a href=\"#about-security-keys\">Security Keys<\/a><\/li>\n\n\n\n<li><a href=\"#about-device-authenticators\">Device Authenticator<\/a><\/li>\n\n\n\n<li><a href=\"#about-duo-security-mfa\">Duo Security MFA<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">About JumpCloud Go<\/h2>\n\n\n\n<p>JumpCloud Go enables passwordless login to JumpCloud-managed web resources on your managed device. Other than initial registration, you won\u2019t need to enter your email, password, and MFA every time you access your resources. Instead, you\u2019ll verify your identity with your device authenticator (Apple Touch ID or Windows Hello) every 12 hours.<\/p>\n\n\n\n<p><strong>Using JumpCloud Go MFA<\/strong><\/p>\n\n\n\n<p>When enabled, you can approve User Portal and SSO login requests from your managed device authenticator.<\/p>\n\n\n\n<p><strong>To learn how to use JumpCloud Go<\/strong>:<\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/jumpcloud.com\/support\/use-jumpcloud-go\" target=\"_blank\" rel=\"noreferrer noopener\">Use JumpCloud Go<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><a><\/a><strong>About Push MFA<\/strong><\/h2>\n\n\n\n<p>Push MFA is a type of solution that sends a notification to your mobile device after you&#8217;ve logged in to a resource with your username and password. When you click the notification, you&#8217;re asked to approve or deny the login request. When you tap <strong>Approve<\/strong>, you gain access to your resource.<\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card tip\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/tip-icon.png\" \/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Tip:<\/strong> \n<p>JumpCloud protects against fraudulent push attempts by blocking more than one notification per resource within a sixty second period (the number of maximum concurrent attempts can be changed by an admin). &nbsp;You can try again after the timeout or after you have approved or denied the initial request.&nbsp;<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"402\" height=\"535\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png\" alt=\"jumpcloud protect push notification\" class=\"wp-image-80873\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png 402w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity-225x300.png 225w\" sizes=\"(max-width: 402px) 100vw, 402px\" \/><\/figure>\n\n\n\n<p>Typically you have to download an app when you set up for Push MFA. To use Push MFA with your JumpCloud user account, your admin has you download JumpCloud Protect.<\/p>\n\n\n\n<p><strong>Using Push MFA<\/strong><\/p>\n\n\n\n<p>Use Push MFA to log in to your User Portal and SSO applications.<br><br>You can set up and find your Push MFA status in the <strong>Security<\/strong> tab of the JumpCloud User Portal.<\/p>\n\n\n\n<p><strong>To learn how to use Push MFA<\/strong>: <\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/jumpcloud.com\/support\/jumpcloud-protect-for-end-users\" target=\"_blank\" rel=\"noreferrer noopener\">JumpCloud Protect for End Users<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">About Verification Code (TOTP) MFA<\/h2>\n\n\n\n<p>Verification Code (TOTP) MFA uses authentication codes called Time-based One Time Passwords (TOTP). When you log in to a resource that\u2019s guarded by TOTP MFA, you need to provide your username, password, and a TOTP code generated by the authenticator application on your phone or computer. These codes are generated from an authenticator application on a mobile phone or computer, like JumpCloud Protect, Google Authenticator, or Yubico Authenticator.<\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card tip\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/tip-icon.png\" \/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Tip:<\/strong> \n<p>We recommend having TOTP set up on devices in addition to other MFA factors as it can be used to authenticate when there is no internet access.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<p><strong>Using Verification Code&nbsp;(TOTP)&nbsp;MFA<\/strong><\/p>\n\n\n\n<p>Your IT Admin decides where you use TOTP MFA, but you may be asked to use TOTP MFA when you log in to the User Portal, RADIUS server, and your device.&nbsp;<\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card note\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/note-icon.png\" \/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Note:<\/strong> \n<p>For certain applications, you may need to manually advance, or use the tab key, to enter the code digit-by-digit in the individual TOTP fields.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<p>You can set up and find your TOTP MFA status in the <strong>Security<\/strong> tab of the JumpCloud User Portal.<\/p>\n\n\n\n<p><strong>To learn how to use TOTP MFA<\/strong>:&nbsp;<\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/jumpcloud.com\/support\/set-up-authenticator-app-for-user-account\" target=\"_blank\" rel=\"noreferrer noopener\">Set Up an Authenticator App<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">About Security Keys<\/h2>\n\n\n\n<p>A security key is a device that often looks like a USB drive that&#8217;s used with MFA. When you log in to a resource that&#8217;s guarded by a security key, you must provide your username, password, and the security key.<\/p>\n\n\n\n<p><strong>Using Security Keys<\/strong><\/p>\n\n\n\n<p>You can use security keys to log in to the User Portal and SSO applications and to verify password resets made from the User Portal.<\/p>\n\n\n\n<p>You can set up and find your security key status in the <strong>Security<\/strong> tab of the JumpCloud User Portal.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">About Device Authenticators<\/h2>\n\n\n\n<p>Device authenticators are unique to your device and are often a biometric-enabled device like Apple Touch ID or Windows Hello. This can be used as a form of authentication to verify your identity.<\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card note\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/note-icon.png\" \/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Note:<\/strong> \n<p>To enroll Windows devices with device authenticator, Windows Hello must already be set up.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<p>You can enroll your device and find your device authenticator status in the <strong>Security<\/strong> tab of your JumpCloud User Portal.<\/p>\n\n\n\n<p><strong>To learn how to use security keys or device authenticators<\/strong>:&nbsp;<\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/jumpcloud.com\/support\/use-security-key-or-device-authenticator-with-user-accounts\" target=\"_blank\" rel=\"noreferrer noopener\">Use a Security Key or Device Authenticator<\/a><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">About Duo Security MFA<\/h2>\n\n\n\n<p>Duo Security MFA lets you log in to a resource using push notifications, phone callbacks, and mobile passcodes provided by Duo. Your IT Admin chooses the authentication options you have for Duo Security MFA.<\/p>\n\n\n\n<p>When you log in to a resource that\u2019s guarded by Duo Security MFA, you need to provide your username, password, and choose an authentication option. Then you provide the factor that\u2019s required for authentication.<\/p>\n\n\n\n<p><strong>Using Duo Security MFA<\/strong><\/p>\n\n\n\n<p>You can use Duo Security MFA to log in to the User Portal and SSO applications and to verify password resets made from the User Portal.&nbsp;<\/p>\n\n\n\n<p>You only see Duo Security MFA when you choose to use it to log in to a resource. You don\u2019t see it in the User Portal.&nbsp;&nbsp;<\/p>\n\n\n\n<p><strong>To learn how to use Duo Security MFA<\/strong>:<\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/jumpcloud.com\/support\/use-duo-security-with-jumpcloud-mfa\" target=\"_blank\" rel=\"noreferrer noopener\">Use Duo Security with JumpCloud<\/a><br>&nbsp;<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>If you are a JumpCloud Admin or want to learn about administrative MFA configurations, see MFA Guide for Admins. Multi-factor [&hellip;]<\/p>\n","protected":false},"author":204,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2908,2854],"support_tag":[],"coauthors":[2838,3011],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>MFA Guide for Users - JumpCloud<\/title>\n<meta name=\"description\" content=\"Explore the different types of MFA available to JumpCloud users.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/mfa-for-users\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MFA Guide for Users\" \/>\n<meta property=\"og:description\" content=\"Explore the different types of MFA available to JumpCloud users.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/mfa-for-users\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:modified_time\" content=\"2025-02-04T21:19:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"jenniferklein, nickconrad\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users\",\"url\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users\",\"name\":\"MFA Guide for Users - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png\",\"datePublished\":\"2023-06-05T17:09:30+00:00\",\"dateModified\":\"2025-02-04T21:19:55+00:00\",\"description\":\"Explore the different types of MFA available to JumpCloud users.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/mfa-for-users\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/mfa-for-users#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"MFA Guide for Users\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"MFA Guide for Users - JumpCloud","description":"Explore the different types of MFA available to JumpCloud users.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/mfa-for-users","og_locale":"en_US","og_type":"article","og_title":"MFA Guide for Users","og_description":"Explore the different types of MFA available to JumpCloud users.","og_url":"https:\/\/jumpcloud.com\/support\/mfa-for-users","og_site_name":"JumpCloud","article_modified_time":"2025-02-04T21:19:55+00:00","og_image":[{"url":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"5 minutes","Written by":"jenniferklein, nickconrad"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/mfa-for-users","url":"https:\/\/jumpcloud.com\/support\/mfa-for-users","name":"MFA Guide for Users - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/support\/mfa-for-users#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/support\/mfa-for-users#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png","datePublished":"2023-06-05T17:09:30+00:00","dateModified":"2025-02-04T21:19:55+00:00","description":"Explore the different types of MFA available to JumpCloud users.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/mfa-for-users#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/mfa-for-users"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/support\/mfa-for-users#primaryimage","url":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png","contentUrl":"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/04\/protect-verify-your-identity.png"},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/mfa-for-users#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"MFA Guide for Users"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/77192"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/204"}],"version-history":[{"count":2,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/77192\/revisions"}],"predecessor-version":[{"id":120628,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/77192\/revisions\/120628"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=77192"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=77192"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=77192"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=77192"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}