Rhythm optionally supports Multi-Factor Authentication (MFA) for your console users. If this option is enabled, your console users will need to enter a time-based one-time password (TOTP) in addition to their regular email address and password to log in to the Rhythm Console.
Rhythm is compatible with any app that supports TOTP, however Google Authenticator or Twilio Authy are recommended. Each of your users must have your preferred TOTP app installed on their mobile device to generate the one-time use codes. The remainder of this guide will include instructions for Twilio Authy.
If you would like to enable MFA for your console users, you must first contact firstname.lastname@example.org to enroll.
Note: If your organization elects to enable Rhythm's Multi-Factor Authentication (MFA) option, we strongly recommend communicating the process to your staff in advance of the rollout. Demonstrate the benefits of MFA to your organization and its constituents, share these instructions with your team, and set a deadline for everyone to complete the enrollment.
First, download and install your organization's preferred authenticator app on your mobile device from either the Apple Store or Google Play. This guide contains screenshots for Twilio Authy. The next time you log in to the Rhythm console, you will start by entering your email and password on the standard login screen:
You will then be prompted to Secure Your Account using an authenticator app:
Open the authenticator app on your mobile device and add a new account. In Twilio Authy, this is done by clicking the plus icon in the bottom left of the screen. You will be prompted to Scan QR Code as seen below. Clicking this button will open your camera which you must direct at your monitor to scan the QR code from Rhythm.
To save the new account in Twilio Authy, you will be prompted to assign it a memorable name and icon. Once you save the account, you can select it at any time in the bottom left of the screen:
With the new account selected, enter the token (numbers) from Twilio Authy in Rhythm as seen below. Next, click Continue to confirm your enrollment. You will need to enter the code before the timer in Twilio Authy expires and a new code is generated:
Finally, you will be prompted to save a backup code that will allow you to access your account if your mobile device is ever lost. Please store this code in a secure location, check the box to acknowledge, then click Continue.
You have now successfully enrolled for MFA. You will now be prompted to enter a code each time you log in to Rhythm. You will need to open your authenticator app, select the application you just created, and enter the code before the time expires and a new code is generated.