Configuring multi-factor authentication for GUI users

You can configure multi-factor authentication for GUI users who are registered in IBM Cloud® Security Verify repository. All users for whom this feature is enabled are eligible to provide extra authentication credentials that they receive on their registered email address or phone number and log in to the GUI.

The following steps help you configure multi-factor authentication method for authenticating the GUI users:
Note: If you are unable to view this feature, it indicates that Multi-Factor Authentication is not configured with your account. Contact your System Administrator for more details.
  1. Go to Services > GUI page in the IBM Spectrum Scale GUI.
  2. Click Additional Authentication.
  3. Click Configure Multi-Factor Authentication. The Configure Multi-Factor Authentication window appears.
  4. To enable the GUI for multi-factor authentication,use the GUI ENABLED slider.
  5. Type the proxy server name and the port number it uses to connect to the GUI in Proxy server.
    Note: It is not mandatory to provide the proxy server name and port number.
  6. Type your ID that you have used to configure the multi-factor authentication, in the Client ID field.
  7. Type the hostname that is added in the IBM Security Verify server, in the Tenant name field. For more information, see IBM Security Verify documentation.
  8. Type the secret information that you have added in the IBM Security Verify server, in the Client secret field.
  9. Click Test Connection to check whether your selected user is enabled for multi-factor authentication.
  10. Click Configure to complete the configuration of the multi-factor authentication.
On completing the configuration, you are prompted to log out of the system.
You can log in to the IBM Spectrum Scale GUI again and create groups by using the Services > GUI > Groups option and assign users to those groups by using the Services > GUI > Users option. You can enable multi-factor authentication for all new users.
Note: You cannot enable multi-factor authentication for User Groups that use inter-service REST API based communication.