Skip to main content
All CollectionsGuides for dashboard.dispel.ioMulti-Factor Authentication Guides
Overview of Dispel MFA
Overview of Dispel MFA

Describing all the components of Dispel MFA, with links to all how-to guides.

Fred avatar
Written by Fred
Updated over 3 weeks ago

What is MFA?

Multi-factor authentication (MFA) is a security measure that requires an additional form of authentication beyond your password to log into your account. Dispel integrates with many MFA providers, detailed in this article.

By signing in with MFA, you verify that you know your password, and have access to an additional device that confirms your identity (either a phone with TOTP or a hardware token, depending on what kind of MFA you choose). 

This additional security measure means that your account cannot be accessed by a malicious actor even if they have your password, since they do not have access to your additional device.

Some organizations enforce MFA, requiring you to set up MFA upon your next login.

Types of MFA

What is TOTP?

Temporary one-time passwords (TOTP) are six-digit tokens generated by your TOTP application. A TOTP application on your phone (recommended) or computer can automatically generate a new authentication code that regenerates after a set period of time. 

There are plenty of good TOTP apps or password managers that have the needed functionality such as:

What are Hardware Tokens?

A hardware token is a physical device which acts as a key to your account, such as a YubiKey. To use, plug it into the USB port and press on the button. 

What are Recovery Codes?

Recovery codes are one-time use codes that you can enter instead of your chosen MFA method.

A recovery code can be used when you do not have access to your 2FA-device generated code. Perhaps because the 2FA-device is broken, stolen, lost or replaced and you forgot to move the 2FA to the new device.

For this reason, recovery codes should be stored safely as they are the only way to sign in to your account if a generated code is no longer available to you. We recommend storing your recovery codes in a password manager such as 1Password (Download).

You receive 10 recovery codes when you enable your first MFA. Each recovery code can only be used once, but a new batch of recovery codes can be regenerated from the settings page, although we do not recommend this, because regenerating your recovery codes invalidates all previous recovery codes.

Helpful MFA Resources

TOTP MFA Guides

Security Keys MFA Guides

Managing Your MFA Guides

MFA Troubleshooting Guides

Related Articles
How To: Add TOTP as a Primary MFA Method
Something went wrong: MFA troubleshooting guide
How To: Configure Your 6-Digit TOTP MFA (User Guide)
How To: MFA Recovery Codes
MFA Troubleshooting Guide
Did this answer your question?