Multi-Factor Authentication

Multi-Factor Authentication (MFA) uses an authenticator app to provide an additional layer of validation for logins. You can enable MFA in Sysdig Secure or Sysdig Monitor to enhance your account security with any authenticator app of your choice, such as Google Authenticator or Okta Verify.

Limitations

  • MFA only applies to local (username and password) user accounts.

    • If you need to use MFA when using an Identity Provider (IdP), look into your Single Sign-On (SSO) configuration. See Enable Single Sign-On.

  • Administrators cannot enable MFA on user accounts. However, they can disable it.

Enable MFA

You can enable MFA for your account from the User Profile page. Once enabled, you will be prompted to use MFA when you login.

To enable Multi-Factor Authentication:

  1. Log in to Sysdig Secure or Sysdig Monitor.

  2. Navigate to Settings > User Profile.

  3. In the Multi-Factor Authentication section, toggle Authenticator App MFA on.

    A modal appears. The modal has a QR code and a key.

  4. In your authenticator app, add a new account. Consult the documentation of your chosen app for precise instructions.

  5. Scan the QR code with your authenticator app. Alternatively, enter the key below the QR code manually.

    A verification code appears in your authenticator app.

  6. Enter the code into the text box in the modal, and click Confirm.

Multi-factor authentication is now enabled.

Log in with MFA

Once you have enabled MFA on an account, you can log in with MFA:

  1. Go to the Sysdig Secure or Sysdig Monitor login page.

  2. Enter your username and password.

  3. Select Log in.

  4. Open your authenticator app. A code will appears.

  5. Enter the code generated in your authenticator app.

  6. Select Verify.

If the code is correct, your login will be successful.

Disable MFA on your Account

To disable MFA on your own account:

  1. Log in to Secure or Monitor.

    If you cannot log in, contact your administrator.

  2. Navigate to Settings > User Profile.

  3. In the Multi-Factor Authentication section, toggle Authenticator App MFA off.

  4. Select Confirm.

Multi-factor authentication is now disabled. When you attempt a login, you will no longer need to user your authenticator app.

(Admin) Disable MFA for a User

Administrators can disable MFA for other users. This is useful, for example, if a user loses access to the authenticator app. To disable MFA on a user’s account as an Admin:

  1. Log in to Sysdig Secure or Sysdig Monitor as an Admin.

  2. Navigate to Settings > Users.

  3. Select a user from the list.

    The Edit User page appears.

  4. Toggle off Authenticator App MFA.

MFA is now disabled for that user. Remember that Admins cannot toggle MFA on.