Why enable MFA?

When signing in to your account, MFA (Multi-factor authentication, sometimes known as "Two-Factor Authentication") adds an additional layer of security. Having MFA enabled means that if a malicious actor steals your password, they still require something you have (usually your phone) to access your account. Accounts with MFA enabled are significantly less likely to be breached by a malicious actor.

What do I need to enable MFA with monday.com?

You will need to be at your work computer, and you will need your phone. You should already have the Microsoft Authenticator app which you can use for this process.

Registering for MFA with monday.com

If your corporate monday.com account is managed by Osmosis, then once MFA is enabled for everyone you will be prompted to set it up the next time you sign in. Once active, you will see a screen that looks like this prompting you to configure MFA:

⚠️ Osmosis recommends choosing the Authentication App option, and not the Text Message/SMS option. Due to the prevalence of SMS cloning and port-out scams, Text Message authentication is significantly less secure than using an Authentication App.

Configuring the Authenticator App MFA option

1. From here, select Authentication App and then click Continue.
   • A new popup with a QR code will appear.
     
     
2. On your phone, open your Microsoft Authenticator app. The icon looks like this:
   
   
3. Tap the Scan QR Code button in the bottom-right of the Authenticator app:
   
   
   
4. Scan the QR code on your screen with the camera. You will then see a new entry appear with a 6 digit code and a 30 second timer.
   
   
5. Enter the 6 digit code that appeared in your Authenticator app from the last step in the in the popup and then click Set up:
   

That's it! When you log in from a new device in the future, after inputting your password you will be prompted to enter the 6 digit code from your authenticator app.