Login Using Multi-Factor Authentication

Multi-Factor Authentication (MFA) is a more secure login process that combines validating two or more independent credentials before we allow the user to access e-Builder. Our current login process requires the user to enter only a password (something they know) while MFA requires an additional security layer. The typical approaches for MFA include the user to also provide “something they have” (security token or code) or “something they are” (biometric verification).

The goal of MFA is to create a layered defense and make it more difficult for an unauthorized person to access a target such as a physical location, computing device, network or database. If one factor is compromised or broken, the attacker still has at least one more barrier to breach before successfully breaking into the target.

e-Builder strongly recommends that users utilize a separate mobile device (phone, tablet) with an authentication app as the second MFA step. This separation provides the best protection for the user's credentials. Browser based authentication apps or extensions are not supported.

Setting up multi-factor authentication for the first time

Multi-factor authentication must first be enabled for your account. For more information, see Multi-Factor Authentication

If MFA has been enabled for your account, you will receive an email notification asking you to log in and complete the 2-step verification setup process.

You will need to install an authentication app on your mobile device. For a list of apps that have been tested by e-Builder to work with our current login sequence, go to the Login Hub and view the FAQ "How do I login to e-Builder using Multi-Factor Authentication (MFA)?".

To set up multi-factor authentication (MFA)

Click Login in the email that you received from e-Builder.

New Users only (If you are an existing user, skip steps 2-5)

Click Agree to accept all terms. The Profile page is displayed.
Enter all the required profile information (marked with an *) and click Save.
Enter the following required details to reset the password for your account:
- Current/ temporary*: The temporary password provided to you for your account.
- New*: The new password you wish to set for your account.
- Confirm*: Re-enter the new password you wish to set.
- Security questions*: Select the security questions / answers for your account.
Click Save.
In the 2- step verification page. enter the verification code sent to your registered email address and click Verify.
This one-time verification code expires in 10 minutes. If you didn't get the verification email, click Didn't get a verification code? and then click resend the code to get a new code sent to your email address.
1. Click Verify. The Get authenticator app section is displayed.
2. Follow the onscreen instructions to select an authenticator app to install on your mobile device.
3. In the authenticator app on your phone, scan the QR code to add the token.
  If you cannot scan the QR code, click Can't scan it? to view instructions on how to manually add the account by entering the 16-digit verification code displayed onscreen.
  To set up the browser authenticator instead, click Can't scan it? and copy the verification code provided.
4. Click Done. The authenticator app will generate a 6-digit code.
  In the authentication app, the code will be displayed in blue as long as it is valid (30 seconds). After a code expires, it will be displayed in red. e-Builder accepts the current and previous code.
5. Enter the authenticator app-generated code in the Verification code field.
6. Click Save. A registration confirmation message is displayed.
7. Click Continue to e-Builder to complete the login process. The e-Builder homepage is displayed.

Subsequent Logins Using the Authenticator App

After you setup your account to use the authenticator app, you will need to keep the app accessible during future login attempts.

On subsequent logins, you will only need to enter a code generated by the authentication app.