Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

In order to help ensure the data that you enter into your Softrip back-office applications is more secure, Softrip now offers a two factor authentication process.  Two-factor authentication increases security by requiring you to enter a temporary code each time you log in to your account. This verifies that the person logging in to your account not only knows your password, but also has access to the device on which your two-factor secret code is stored.  

Note
NOTE

NOTES

  • SoftripNet authentication does not support 2FA, it is only supported in SoftripNext authentication.
    If your Softrip instance uses SoftripNet authentication, it will have to be updated and reconfigured to use SoftripNext authentication instead.
    Reach out to your Softrip contact on how to update these settings.

  • If you are using SoftripNet (legacy) reservations, ask your Softrip support contact to review the STServerWeb setting IsPassThruLoginEnabled and the STServer setting PassThroughSession. If those setting are not set correctly, 2FA requirements will not take effect.

Accessing two-factor

The below steps outline how to access the two-factor authentication settings in security.

...

Info

Note:  Once the above steps are followed, two factor is enabled.  Moving forward, each time a user logs out of the Softrip application and logs back into the Softrip application, they must open their third party authenticator application to generate a fresh code and enter it into the token field in order to access their Softrip application.  

Info

Note: If you are using SoftripNet (legacy) reservations, ask your Softrip support contact to review the STServerWeb setting IsPassThruLoginEnabled and the STServer setting PassThroughSession. If those setting are not set correctly, 2FA requirements will not take effect.

Video

(Please note that this video displays the full process of how to set-up a global two-factor setting under the security sub-system as well as discusses how to enter your codes and token in your two-factor authenticator application.  Not everyone within the organization will need or should access the system settings option under the security subsystem.) https://youtu.be/cITsVpSrlo8

...