Set up push multi-factor authentication for Unified Login

The following procedures show you how to download and install the KaseyaOne app from Google Play (for Android devices such as the Samsung Galaxy tablet) or the Apple App Store (for iOS devices such as iPhone or iPad).

On your Android mobile device:

1. Go to Google Play and search for the following app: KaseyaOne Mobile.
   Alternatively, scan the following QR code or click the Google Play icon to download the app.

   

2. Tap Install.

   

3. Follow the on-screen instructions to install the app on your mobile device.

On your iOS mobile device: 

1. Go to the Apple App Store and search for the following app: KaseyaOne Mobile.
   Alternatively, scan the following QR code or click the Apple App Store icon to download the app.

   

2. Tap Get.

   

3. Touch ID/scan your Face ID or enter your Apple ID password to install the app on your mobile device.

4. Tap Open to open the app.

Configuring the KaseyaOne app involves accepting the terms and conditions (the first time you access the app), configuring the app settings, then adding an account for your (trusted) mobile device.

1. Open the KaseyaOne app on your mobile device and tap Continue on the Welcome screen.
   

2. Accept the terms and conditions:
   
   

3. Set up screen lock on the next screen, otherwise tap Skip and proceed step 5.
   

4. When prompted, use the camera to capture your Face ID or touch the fingerprint sensor to confirm your identity using your fingerprint.

5. On the next screen, tap Add Account to connect your device to your KaseyaOne account:

   

   • Enter the Username, Password, and Company Name for your KaseyaOne account and tap Log In.

   • Enter the 2FA authentication code when prompted and tap Verify.

   • Tap Done on the next screen. Your account will appear in the KaseyaOne app in the My Account > My Settings > Security view. You will receive notification by email confirming that your device was added to your account.

     

   Repeat this step as required to add another account — that is, connect your device to another KaseyaOne account.

   NOTE  After you connect your first trusted device, push MFA is automatically enabled for you and it will be the default method used to verify your identity when accessing your KaseyaOne account. Two-factor authentication (2FA) will continue to be available as usual.

After you set up push MFA for your KaseyaOne account and add at least one trusted device, the KaseyaOne app will be used to verify your identity whenever you access your KaseyaOne account. The steps to log in to your KaseyaOne account using push MFA follow.

NOTE  The procedure to log in to your KaseyaOne account using push MFA is different to the procedure described in Log In with KaseyaOne (end user) which uses two-factor authentication (2FA) only.

1. On the KaseyaOne login page:

   • Enter the Username and Company Name for your account and click Next.

   • Enter the Password for your account and click Log In.

     

2. When prompted to approve this login, enter the number shown (14 in this example) in the KaseyaOne app.
   

   NOTE  If you don't want to use the KaseyaOne app to approve this login (maybe you've misplaced your mobile device or the battery is depleted), click Try Another Way to log in using 2FA in the usual way.

3. In your mobile device:

   • You will receive a notification message asking if you are trying to log in to KaseyaOne now — tap the message to open it.
     

   • (Optional) Tap Unlock to unlock your mobile device using Face ID or to confirm your identity using your fingerprint.

   • Enter the number shown in KaseyaOne (14 in this example) to log in and then tap Yes, It's Me.
     

     NOTE  You must enter the number and confirm that it's you in a timely manner, otherwise you will have to go back to KaseyaOne and select a different option — you can choose to Send Another Request (resend the log in request to the KaseyaOne app) or Try Another Way ( log in to your account using the usual 2FA).

4. If log in is successful, the module portal opens.

To remove a trusted device (or mark a device as not trusted) in KaseyaOne :

1. Navigate to My Account > My Settings in KaseyaOne.

   

2. Go to the Security tab in the My Settings view that opens.

   

3. In the Push Multi-Factor Authentication (MFA) Devices section, locate the device and mark it as not trusted:

   • In the Status field, click the three dot (More) icon and select Remove Trusted Device.

   • Click Remove when prompted for confirmation.

   • The device's status changes to Not Trusted, the device will be removed from the trusted device list, and you will no longer be able to use it for push MFA.

If you mark a device as not trusted in KaseyaOne, you can manually mark the device as trusted again as shown in the following procedure. If you delete a trusted or not trusted device in KaseyaOne, it will be removed altogether from the Push Multi-Factor Authentication (MFA) Devices list.

1. Navigate to My Account > My Settings in KaseyaOne.

   

2. Go to the Security tab in the My Settings view that opens.

   

3. In the Push Multi-Factor Authentication (MFA) Devices section, locate the device and mark it as trusted.

   • In the Status field, click the three dot (More) icon and select Add As Trusted Device.

   • The device's status changes to Trusted.

1. Click Settings in the KaseyaOne app.

2. Tap to enable App Lock.

   

When you clear the application data for the KaseyaOne app or reset your Android device to the factory settings, the Android OS resets the unique device ID as well. As a result, your Android device appears as a new but Not Trusted device in KaseyaOne. To proceed, you must mark the new device as a Trusted device and mark any old device IDs that are no longer relevant as Not Trusted.