Multi-factor authentication

Owned by Mark Caldwell
Last updated: Oct 14, 2024 by Joanne Crean
4 min read

All users can set up multi-factor authentication (MFA) on their account. If MFA is enabled the user will need to enter a code from their authentication app every time that they log in to PKB. MFA is mandatory for patients linked to Organisations in the Netherlands.

How do I enable MFA?

Log in and click ‘Settings’ or ‘Profile’ at the top of the page.

Click ‘Authenticator.’

Open up an authentication app on your smartphone, such as Authy or Google Authenticator. In the authentication app scan the QR code displayed on PKB (or manually enter the details on the right hand side). Add the code displayed on your phone into PKB and click ‘Enable’.

If the code is wrong or incomplete, an error message will display on PKB.

If the code is correct, MFA will be enabled and you will be returned to the PKB homepage with a success message.

How do I disable MFA?

Navigate to Profile > Authenticator. Enter the code displayed on the authentication app on your smart phone that you used to set up MFA. Click ‘Disable’. If you are linked to an Organisation in the Netherlands, MFA is mandatory and therefore will have to be re-enabled if it is disabled.

How do I log in with MFA enabled?

Enter your login credentials as usual

Enter the code displayed on the authenticator app on your smartphone and click ‘Authenticate’

What if I access PKB via Single Sign-On?

You can grant access to a third party app with single sign-on (SSO). If you have enabled MFA on PKB, PKB asks for an authentication code when first setting up the SSO connection.

Every time you access PKB via SSO, PKB asks for an authentication code:

When a third party system uses PKB APIs to post or get data for a user with MFA enabled, PKB does not need the authentication code.

What if I access PKB using NHS Login?

If you have MFA enabled in PKB and log in via the NHS Login (for example, if accessing PKB via the NHS App), you will need to enter your PKB password and MFA code when you first link your NHS Login to your PKB record.

After your first login with NHS login, when you log in with NHS Login, PKB MFA will not apply because NHS Login has its own MFA set-up.

Please see the steps below to understand how MFA is managed when first logging in to PKB via NHS login.

Use ‘Login with NHS Login’ button

Enter your NHS Login email address

Enter your NHS Login password

Enter the 6 digit code sent to your mobile phone by NHS Login

You will then be logged into PKB.

What if I can no longer access the MFA codes on my device?

If you have already logged in with NHS Login, you can login with NHS login. 

If you need to reset your MFA codes, contact your local PKB support desk. After your local support team have verified your identity, they can initiate a password reset which will also reset MFA for you. Once you set a new password, you can re-enable MFA.

Can I reset my password if I have MFA enabled?

Yes, you can reset your password or a coordinator can reset your password if you have MFA enabled.

If you reset your password yourself, this will not reset your MFA so you will be asked to enter an MFA code when you login after resetting your password.

 If a coordinator resets your password, this will reset your MFA so you will need to set it up again after you change your password.

 

PKB customer sites: deploy | developer | information governance | procurement | manual |https://wiki.patientsknowbest.com/space/MAN]research

© Patients Know Best, Ltd. Registered in England and Wales Number: 6517382. VAT Number: GB 944 9739 67.