Resource Center

Multi-Factor Authentication

Configure MFA

Multi-factor authentication is used as an extra layer of security while signing in to your account. When you enable MFA, all your future sign-ins will require you to verify your identity to ensure that your account is not accessed by unknown users. You can do this by enabling MFA mode. For example, if you enable SMS-based OTP, then an OTP will be sent to your mobile number, which then needs to be entered when you sign in, thus ensuring that your account stays protected.

Charm provides four authentication modes to choose from.

Configuring SMS-based OTP

  1. Sign in to your Charm account and click on the 'Multi-Factor Authentication' tab.
  2. Choose the 'SMS-based OTP' option as your mode.
  3. Enter the mobile number to receive the verification code.
  4. Enter the verification code that you received on your phone.
  5. Add a backup phone number that the verification code will be sent to in case your primary device is inaccessible.

Configuring OTP Authenticator

An OTP authenticator generates unique codes in fixed time intervals. When you set an OTP authenticator as your MFA mode, you can use the OTP shown in the Authenticator app to verify your identity during sign-in.

  1. Sign in to your Charm account and click on the 'Multi-Factor Authentication' tab.
  2. Click on the 'Set up now' option under the 'OTP Authenticator' section.
  3. A screen with a QR Code to Scan gets displayed.
  4. Download the Zoho OneAuth app on your device. You can use any authenticator apps like Google Authenticator to scan the QR code.
  5. In the Zoho OneAuth app, go to the Authenticator tab > tap Add now > Scan QR code. To configure your account in Google Authenticator, scan the barcode image displayed on the Setup page.
  6. Once you scan the QR code, click on the 'Next' button and enter the OTP.
  7. If you have any issues with the image loading, then you can use the 16-character 'Secret Key' displayed near the QR Code to configure your account in the Authenticator.
  8. Whenever you log in to your Charm account with your email address and password, you will be prompted to enter the OTP displayed on your Authenticator app.

Configuring YubiKey

A YubiKey is a hardware device that can be inserted into your computer or laptop. When you configure a YubiKey for your Charm account and set it as your MFA mode, you can insert it to verify your identity during sign-in.

  1. Sign in to your Charm account and click on the 'Multi-Factor Authentication' tab.
  2. Click on the 'Set up now' option under the 'YubiKey' section.
  3. Insert your YubiKey into your computer's USB port and click on the 'Next' button.
  4. Wait for the YubiKey to blink, then tap the golden disc.
  5. Name your YubiKey and click on the 'Configure' button.
  6. Every time you sign in to your Charm account, insert your YubiKey when prompted for multi-factor verification.

Supported Devices: YubiKey NEO, YubiKey 4 Nano, YubiKey 4, YubiKey 4C, YubiKey 4C Nano, YubiKey NEO-n, YubiKey Edge, YubiKey Edge-n.

Requirements:

  • The latest version of Google Chrome or Opera browser. If you're using Mozilla Firefox, ensure that U2F support is enabled.
  • A U2F-enabled YubiKey.

Configuring Exostar Authenticator

Note: This option will be applicable only for the prescribers who have completed the EPCS registration process. Before choosing this option, make sure you have completed the EPCS registration process and obtained two factor authentication from Exostar.

  1. Sign into your Charm account.
  2. Click the 'Multi-Factor Authentication' tab.
  3. Choose 'ExoStar Authentication' as your mode.
  4. Choose the mode of Exostar authentication option, either Hardware token or Software token (Authy app).
  5. Enter the verification code
    - Software Token (OTP value displayed in the registered mobile's Authy app)
    - Hardware Token (OTP value displayed in your Hardware token device)
    Exostar Authenticator
  6. Click on the 'Next' button.