Your organization may require you to use multifactor authentication ( MFA ) to log in to Kahua. The MFA process may be completed through an email verification, where an email with an authentication code is sent to you each time you log in to Kahua, or through a TOTP (Time-based One Time Password) verification process. Your organization will determine which method is used with your domain.
If your organization requires you to use multifactor authentication with TOTP authentication to access Kahua, you will need to use a TOTP authenticator app to generate a new code each time you log in to Kahua. The code will be required whether you are logging in through the desktop host or through the website.
To set this up, you will need to download an authenticator app and create an account for Kahua on that app using a QR code that will appear on the Kahua login screen. Once you've completed the initial setup, subsequent logins will require you to use the app to generate an authentication code as part of the login process. The authentication code will be used to verify your identity. This extra step will provide an additional layer of security.
Domain administrators can find information on managing multifactor authentication here.Download the authenticator app
The authenticator app you select can be downloaded and installed on your mobile device. You can use any app that supports TOTP. Check with your corporate IT department for their preferred authenticator app.
Commonly used apps include the Microsoft Authenticator app and the Google Authenticator app. If your mobile device uses Apple iOS, you can go to the App Store to download and install the latest version of Microsoft Authenticator or Google Authenticator. If your mobile device uses Google Android, you can go to Google Play to download and install the latest version of Microsoft Authenticator or Google Authenticator.
Complete the initial log in
When using an email-based code:
After entering your email address and password, you will be sent an authentication code to the email address associated with your Kahua account. Enter that authentication code as required on the login page.
When using a TOTP and an authenticator app:
The first time you log in after the requirement has been added to your user profile, a verification code will be sent to your email address. You will be required to enter that code on the login page.
The code will expire after five minutes. If it expires, you will be required to re-enter your login credentials and receive a new code.
Once the verification code has been entered, a QR code will appear on the Kahua login screen. Complete the following steps:
- Open the previously installed authenticator app on your mobile device.
- Add your account to the app. Each app does this a bit differently. Select Scan QR code, or select Add then Scan QR code.
- Use the camera on your mobile device to scan the QR code. This will setup your Kahua account in the app.
- Once you've scanned the QR code, the app will generate an authentication code.
- Enter the newly generated authentication code into the Kahua login page. Click Enroll & Login to enroll your Kahua account with the authenticator app and open Kahua.
Steps for subsequent logins
Once you have completed the initial login, subsequent logins will simply require your login credentials and a code. The code will be retrieved from your email or from the authenticator app, depending on the method selected by your organization. The steps are as follows:
When using an email-based code:
After entering your email address and password, you will be sent an authentication code to the email address associated with your Kahua account. Enter that authentication code as required on the login page.
When using an TOTP and an authenticator app:
Complete the following steps:
- Navigate to the Kahua login page, either through the desktop host or the web.
- Enter your email address and password and click Sign in. The verification page appears.
- Open the authenticator app and navigate to your Kahua account in the app to view the authentication code.
- Enter the code on the Kahua verification page. Click Verify to open Kahua.
What to do if you lose access to the authenticator app
If you lose access to the authenticator app because your phone is lost, the app is accidentally deleted from your device, or any other reason, an administrator can go to your user profile and un-enroll you from multifactor authentication. This will remove your current multifactor authentication configuration. You will be required to re-enroll the next time you attempt to log in to Kahua.