Multi-Factor Authentication (MFA)

What is Multi-Factor Authentication (MFA)?

Passwords alone are not always enough to secure your sensitive data. Multi-Factor Authentication (MFA) enhances security by requiring a second verification step, ensuring that only authorized users can access their accounts.

With MFA enabled, logging in requires both your password and a one-time code generated on your authenticator app or sent to your email or mobile device. This extra layer of protection significantly reduces the risk of unauthorized access, even if your password is compromised.

MFA is an essential security measure that helps keep your encrypted files safe, making AxCrypt even more reliable for personal and business use.

Multiple Verification Option

  • Authenticator App: Use a Time-based One-Time Password (TOTP) generated via registered Authenticator App.
  • Email: Receive a secured verification code in your email.
  • SMS: Get a one-time passcode via SMS.

AxCrypt’s Multifactor Authentication (MFA) at a Glance

Secure Login with Multiple Factors

AxCrypt’s MFA requires users to verify their identity using two or more authentication factors—something they know (password) or something they have (authenticator app or code).

Encrypted Backup Codes for Emergency Access

During setup, users receive encrypted backup codes to ensure account access even if the primary device is lost. These should be securely stored by the user.

GDPR-Compliant Data Handling

All MFA-related data is processed in accordance with GDPR and other applicable privacy standards, ensuring user data is safe and secure.

How to Enable MFA in AxCrypt?

  1. Sign into your AxCrypt account.
  2. Go to Security > Multi-Factor Authentication.
  3. Choose your preferred verification method (Authenticator App, Email or SMS).
  4. Enter your Password to confirm and complete the authentication process.

Authenticator App

  1. To enable two-factor authentication install any authenticator app (for example: Microsoft, Google, etc.)
  2. Scan the QR code given on screen from the authenticator app,Or copy the code given in the window and paste in the authenticator app.
  3. Press continue and then add the OTP from the authenticator app.

Email & SMS Authentication

  1. Enter your mobile phone number if 'SMS' is selected, else confirm or enter your email address associated with your AxCrypt account if 'Email' is selected.
  2. Click Send Code.
  3. Check your phone for 'SMS' (or) inbox for 'Email' for the 6-digit verification code.
  4. Enter the code to verify and enable SMS-based/email-based multi-factor authentication.

Save Backup Code

  1. Once preferred verification method is authenticated with OTP, a set of codes will be displayed on your screen in the next step. Save it securely and use these backup codes to sign in to your account if you don't have access to the authenticator app or other methods. Each code can only be used once.
  2. A set of backup codes is generated each time a new authentication method is enabled. While using a backup code, you will always receive a notification. If you have used all your backup codes, multi-factor authentication will be disabled for your account and you may be required to re-configure it.

How to sign-in with MFA enabled?

  1. Enter your AxCrypt email and password on the Sign In screen.
  2. Check for a one-time code sent to your chosen method - Authenticator App, Email, or SMS. If Authenticator App is selected, get the code from the App, else check for a one-time code sent to your Email or SMS, whichever is selected.
  3. Enter the verification code when prompted.
  4. Access your account and encrypted files securely.

Use Recovery or Backup Code to complete sign-in process if authentication OTP not available.

How to disable MFA?

  1. Sign into your AxCrypt account.
  2. Go to Security > Multi-Factor Authentication.
  3. Click on particular Multi-Factor Authentication method you want to disable.
  4. Confirm your decision by providing your account password when prompted.

Once all authentication methods are disabled, AxCrypt will no longer ask for a one-time verification code at login. However, we recommend keeping MFA enabled for maximum security.

Note

Once multi-factor authentication is enabled, AxCrypt will prompt you for a one-time verification code whenever you log in, adding an extra layer of security for your account.

What If You Lose Access to All MFA Options?

If you lose access to your MFA method and don’t have recovery codes or any other backup options (like SMS or email verification), account recovery becomes significantly more difficult and may require a manual identity verification process or contact AxCrypt Support for more help.

How Are Recovery or Backup Codes useful?

After enabling MFA, download or copy your backup codes. Recovery or backup codes are a set of one-time-use codes provided when you first set up two-factor authentication (2FA). These codes act as a backup method to access your account if your primary 2FA method - such as an authenticator app is unavailable (e.g., lost phone, non-availability of SMS or email, app uninstalled, etc.).

If you can't use your regular MFA method during login, you'll be prompted to enter one of your recovery codes. This bypasses the need for your usual authentication method and lets you access your account safely.

Each code can only be used once and should be stored securely.

FAQ

Can I use multiple MFA methods at once?
Expand
What if I uninstall my Authenticator App?
Expand
Can I use MFA while offline?
Expand
Can I access my files if I’m locked out due to MFA issues?
Expand
Is my MFA data secure?
Expand
Is MFA available to all users?
Expand

Download our apps to get started

Windows
macOS
Try for free