# Enabling multi-factor authentication

To enhance the security of your Digital River account, enabling multifactor authentication (MFA) is essential. MFA requires users to verify their identity through multiple methods, adding an extra layer of protection. This guide will walk you through the steps to enable multifactor authentication on your account, ensuring your data remains secure.

You can choose from the following authentication factors to provide additional security for your Digital River account during login:

* **SMS authentication**: This method uses SMS (short message service) to send a text message with a code for verification.
* **Google authentication**: This method uses the Google Authenticator mobile app to create a unique security code on your phone that you must enter for verification.

{% hint style="info" %}
**Note:** The Digital River Dashboard application provides multifactor authentication (MFA) to ensure maximum security. Choose your phone number or Google Authenticator [to set up MFA](https://docs.digitalriver.com/digital-river-api/administration/dashboard/profile-settings/enabling-two-factor-authentication). If you are using both Digital River Dashboard and eCompass, you are required to set up MFA for both applications. Use the same username and password for both applications, so you only need to set up MFA once. Your credentials are applied to both applications in the same way.
{% endhint %}

To enable these settings, go to your **Profile settings** page after you have created your Digital River account. Scroll to **Multi-factor authentication** in the **Account security** section. The default setting for both methods is **Off.**

<figure><img src="https://334437993-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LqH4RJfLVLuHPXuJyTZ%2Fuploads%2FgD2I1b7rLh7lBYWUL1IO%2F1%20nu%20mfa%20settings.png?alt=media&#x26;token=072713e1-6559-46e7-9a02-5abb846fe5eb" alt=""><figcaption></figcaption></figure>

## Use SMS authentication

SMS authentication lets you require an additional login credential (besides your username and password) to gain access to your account.

To do that, you provide access to your mobile phone by adding your mobile phone number to your Profile. Digital River uses this trusted phone number to send a code to your phone to help verify your identity.

To enable SMS authentication, use the following steps:

1. On the **Profile settings** page, scroll to **Multi-factor authentication** in the **Account security** section and select **On** from the drop-down menu next to the **SMS** option.

   <figure><img src="https://334437993-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LqH4RJfLVLuHPXuJyTZ%2Fuploads%2FzXMVfbzarSiHQqcorfR4%2Fimage.png?alt=media&#x26;token=b83eb95b-ab70-412f-b2ce-3f4fa584fe87" alt=""><figcaption></figcaption></figure>
2. In the supplied dialog, enter the trusted contact's **Mobile phone number** for authentication. You must also provide your account password.\
   \
   ![](https://334437993-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LqH4RJfLVLuHPXuJyTZ%2Fuploads%2FZAjJpDXYvwFktYiT1MNn%2F3%20nu%20change%20phone%20change%20num%20modal.png?alt=media\&token=d92d07b5-1532-460f-86bf-f4cd331e834e)
3. Click **Add mobile phone number** to save the trusted phone number. The **SMS** selection now provides an **Update** link to click if you need to [update your phone number](https://docs.digitalriver.com/digital-river-api/administration/dashboard/profile-settings/updating-your-phone-number).

   <figure><img src="https://334437993-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LqH4RJfLVLuHPXuJyTZ%2Fuploads%2Fz5KB4uFwN4VS8EwWaPJD%2Fimage.png?alt=media&#x26;token=fbde3411-0c54-485b-8953-04d8f80ab154" alt=""><figcaption></figcaption></figure>

   A code is sent to your mobile phone number each time you sign in to help verify your identity. You need to enter this code to complete the sign-in process.

You may return to this page anytime to turn **Off** this feature using the same drop-down.

{% hint style="warning" %}
**Important:** When you turn this authentication method **Off**, you lose your saved phone number.
{% endhint %}

## Enable Google authentication

The Google authentication method lets you add a login credential (besides just your username and password) to gain access to your account.

To do that, you first provide access to your mobile phone by providing the phone number in your **Profile Settings**. After you install the Google Authenticator app on your phone, Digital River can use the security code generated to verify your identity.

{% hint style="info" %}
**Note:** You need a Google account to use the Google Authenticator mobile app. Refer to [Google Account Help](https://support.google.com/accounts/topic/2954345?hl=en\&ref_topic=7667090) for more information on Google authentication and how to use it.
{% endhint %}

To enable Google authentication, use the following steps:

1. On the **Profile settings** page, scroll to **Multi-factor authentication** in the **Account security** section and select **On** from the drop-down next to the **Google authentication** choice.
2. When the Setup Google Authenticator modal appears, use your mobile device to authenticate the QR code displayed. Scan this and follow the instructions to set up your account and generate security codes. Click **Activate.**\
   \
   ![](https://334437993-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LqH4RJfLVLuHPXuJyTZ%2Fuploads%2FNjbIYADdYkRMYwwPIfbv%2F4%20nu%20mfa%20google%20auth%20enabeled%20setting.png?alt=media\&token=76dfdc27-fdbb-45d4-9587-7d4770680703)

For the complete steps on setting up Google Authentication on your mobile device using the app, refer to [Get verification codes with Google Authentication](https://support.google.com/accounts/answer/1066447) in the Google Help Center.