Platform Wide Update - April 2025
- Amani Imtiyas
Camms is pleased to bring you the Quarterly Product Update Release Note for the Platform Update.
1. Multifactor Authentication (MFA) for Camms |
|---|
To enhance security and ensure regulatory compliance for clients using Forms authentication, Multi-Factor Authentication (MFA) has been introduced. This feature adds an extra layer of protection by requiring users to verify their identity through an authenticator application during login.
How to configure?
MFA can be enabled through an internal setting. To activate this feature, please contact Camms Support.
Once enabled:
Navigate to Main Menu > Administration > MFA Administration to access MFA settings.
For static hierarchy - enabled clients, admin users will have access to the MFA Administration section.
For flexible hierarchy - enabled clients, users with Manage User permissions will see the MFA Administration section. The same View and Edit permissions assigned to the Manage User area will apply to MFA Administration as well.
From the MFA Administration section, administrators can:
View a list of staff members who have configured MFA and those who have not.
Reset a user’s MFA configuration upon request.
Designate users who should receive email notifications for MFA resets via the "Reset Handlers" dropdown.
How does it work?
Once MFA is enabled, users will be prompted to configure it after successful authentication.
A message will guide users to set up MFA using the Microsoft Authenticator app.
Clicking "Yes" will initiate the MFA setup wizard.
Users can download a detailed setup guide for step-by-step instructions.
The setup process includes:
Configuring a security question.
Linking the Camms account with the Microsoft Authenticator app.
Upon successful configuration, users will be redirected to the login page.
During login, after entering credentials, users will be redirected to the verification page, where they must enter the one-time verification code from the Microsoft Authenticator app to complete the login process.
1.1 Account Lockout & Recovery Mechanism
To prevent brute-force attacks, account lockout mechanisms are in place when entering the MFA verification code.
1.1.1 Failed Attempt Lockout
Your account will be locked after five consecutive failed attempts to enter the verification code.
Note: You will not be able to log in to Camms while the account is locked.
1.1.2 Unlocking a Locked Account
If your account is locked, a warning message will prompt you to unlock it. Click "Yes" on the warning message to proceed.
You will be redirected to the Unlock Account page. Provide your Organization Name and Email or Username to request an unlock.
You will receive an email with a link to unlock your account by answering your configured security question.
Security Question Lockout: If you fail to answer the security question five consecutive times, your account will be locked for five minutes before you can try again.
1.2 Resetting MFA
You may need to reset MFA if:
You forget your security question; you can reset it by submitting a request to administrators.
You lose access to your mobile device and cannot retrieve the verification code; you can also submit a request to administrators.
Note: Submitting a request to reset the security question will also reset the MFA configuration.
1.3 Administrator Notifications & Actions
Upon submitting an MFA reset request, administrators listed in the "MFA Reset Handlers" dropdown will receive an email notification.
They can review and reset MFA via the MFA Administration area.
