What is MFA?
Multi‑Factor Authentication (MFA) adds an extra layer of security on top of your password.
When you sign in, you first enter your username and password. After that, you confirm your identity using an app such as Microsoft Authenticator or Google Authenticator.
MFA in PayByLink
MFA is available as an additional security option, but it is disabled by default.
Enable MFA
A user with the “edit info” rights can enable MFA via:
Maintenance → Entity info
Topdown behavior
When MFA is enabled at the license level, it automatically becomes mandatory for all associated main and sub‑accounts.
At lower levels, the MFA setting will be active but cannot be changed (greyed out).
MFA for users
When MFA is enabled:
Important
Users who have access to multiple accounts or licenses must always meet the highest security level.
If MFA is enabled for one account, the user will be required to use MFA for all accounts they can access.
Exempt IP Addresses
An exempt IP address allows users to sign in without an MFA code when logging in from that specific IP address. This is useful for trusted locations, such as fixed office environments.
Add exmpt IP-addresses
A user with the “edit info” permission can add exempt IP addresses via:
Maintenance → Entity info
Topdown behavior
Exempt IP addresses function the same way as MFA: an IP address added at the license level automatically applies to all underlying accounts.
Additional IP addresses can be added at lower levels (for example, regional office locations).
Do you have any questions about this, or do you need assistance? If so, you can call us at +31 (020) 214 8000 or email us at [email protected]
