ShareFile

Multi-Factor authentication

ShareFile’s multi-factor authentication utilizes additional factors like an authenticator app, text message or voice calls in addition to the ShareFile password to provide an extra layer of security when logging into your ShareFile account.

Administrators can customize the multi-factor authentication options available to Employee users and Client contacts.

Notes:

  • ShareFile’s multi-factor authentication is enforced for all employees on all ShareFile accounts.
  • Admins can disable the enforcement of ShareFile’s multi-factor authentication for Employee users, Client contacts or all users so they aren’t required to use it. However, users can still choose to leverage multi-factor authentication.
  • Multi-Factor authentication is supported on iOS and Android mobile devices.
  • Some apps require an app-specific password that must be generated each time you want to sign in to the app.

Edit Multi-Factor authentication methods

Administrators can choose to make multi-factor authentication required or not for either user type or disable the functionality all together (not recommended). Administrators can also choose to remove multi-factor authentication methods for certain user types.

Advisory

ShareFile doesn’t recommend disabling multi-factor authentication for any type of user as it provides an additional layer of security on top of passwords.

Multi-Factor Authentication

To configure Multi-Factor authentication for your Employee users and Client Contacts:

  1. Navigate to Settings > Admin Settings > Security > Sign in Policy > Multi-Factor authentication.
  2. Click Edit:

    Edit MFA

  3. From the Multi-factor authentication drawer:
    1. Toggle Multi-Factor Authentication for Employee users and/or Client contacts.
    2. Click the Required checkbox if you want to enforce multi-factor authentication. We suggest making it required

    Note:

    Any newly created users that are being required to use multi-factor authentication will be asked to configure one of the available authentication methods during the user activation flow.

    1. Choose the verification methods options for your users.
      1. Authentication apps - Such as Google Authenticator App and Microsoft Authenticator App. These applications are available on both iOS and Andoid.
      2. Phone numbers
  4. Click Save.

Advisory

Admins who prefer to disable the two-step verification enforcement for Employee users can opt out by acknowledging the risks associated with not requiring multi-factor authentication in the opt out waiver.

MFA Waiver

If you disable any multi-factor verification methods in your account’s multi-factor authentication configuration, any users leveraging those methods may have to reconfigure their multi-factor authentication settings on their next log-in.

Phone number settings

The phone number setting allows Administrators to choose what type of phone verification options their end users can configure on their account. By default, the Both text message and voice call option is selected. You can adjust this setting to one or the other type.

If phone numbers are a disabled verification method, this box will not be present.

Edit MFA Phone settings

Multi-Factor authentication