Multi-factor Authentication (MFA) protects your organization from an unknown person trying to access your customer and financial data by adding an additional layer of security to Arlo’s login process.
When enabled, you’ll need to present two or more forms of evidence to gain access to Arlo, e.g. a code from an app on your mobile phone as well as a password. You may already be using something similar for other applications you log into such as Google or Office 365.
The Australian Tax Office has recently passed new security requirements for software providers managing financial data. Due to these new regulations, it is now compulsory for anyone with access to an Australian organisation on Xero to have MFA enabled on their login. As a Xero Partner, this will be a mandatory change that Arlo now needs to enforce. Therefore, if we detect your Arlo platform is connected to Xero in Australia, we will turn on the MFA feature automatically.
As part of setting up MFA, users will be required to meet Arlo's password strength settings. Passwords are required to be at least 8 characters long.
Users whose passwords do not meet the password length will be asked to change their password using the Reset password action on the login page.
When MFA is required, either at platform level or for a specific user's account, when the user next logs in to the platform, after they have entered their usual username and password, they will see the MFA security page.
Setting up MFA for an account is a process that is split into 3 steps:
- Download an authenticator app
- Sync the app with Arlo
- Log in to Arlo
Step 1: Download an authenticator app
If the user already uses an authenticator app, they can add another account to it for their Arlo login.
If they don't already have an authenticator app, we recommend one of the following, which are all free to download and use:
- Google Authenticator (Google Accounts Help Centre) for Android, iPhone, iPod Touch, iPad, and BlackBerry devices
- Microsoft Authenticator (Microsoft Help Centre) for Android and iOS devices
- Authy (Authy website) for iPhone, iPad, Android, Mac computers and Windows computers
- Windows Authenticator (Microsoft Store) for Windows Phones
Step 2: Sync the app with Arlo
Once the user has downloaded an authenticator app, they should follow they instructions in the app to set up their account.
If the user does not already have one, they may need to install a barcode scanner app, so they can scan the QR code in Arlo.
- Click Continue on the MFA security page.
- Scan the QR code in the authenticator app.
If you are unable to scan the QR code (e.g. if you are trying to log in on your phone, or if your scanner is not working), there is an option to copy a plain text key from the Arlo MFA setup page and paste it into the authenticator app. To get the plain text key, click Can't scan image under the QR code.
- Enter the code generated by the authenticator app in the field in Arlo.
- Press Confirm. MFA will now be set up.
Step 3: Log in to Arlo
Once MFA is set up, when the user logs in to Arlo, they will be challenged to enter the authentication code from their app. They enter the code into the field and press Confirm to complete the login.
If an Arlo user cannot access their authenticator app (e.g. they may have lost their phone), their MFA will need to be reset. The user should contact Arlo Support so we can do this for them.
Resetting a user's MFA may take up to 2 hours. A Support agent may contact the user to verify their identity to ensure the platform remains secure.