Skip Ribbon Commands
Skip to main content
Navigate Up

Implementation of multifactor authentication (MFA)

In order to enhance the security of the services which the KDPW Group companies offer to their clients via the Services Portal https://online.kdpw.pl, we are running a project to implement multi-factor authentication (MFA).  At this time, access to the applications requires authentication using a password, which is a knowledge attribute. To increase the level of trust, a second authentication factor will be added, which will be based on a possession attribute. As a result, during the authentication process, the user will have to prove that he or she has access to a trusted and assigned device. A trusted device can be:
  • A mobile application (KDPW Group Authenticator) installed on an Android or iOS mobile device.
  • A trusted web browser, used on a computer with a specific network and IP address, which the user authenticates as trusted when logging in (after confirmation using the mobile app).
The list of devices assigned to an access account and defined as trusted can be managed at the account management level, using the dedicated page https://identity.kdpw.pl. As part of this service, it will be possible to remove devices from the trusted list and verify all authentication operations performed with a given device. Access to this resource will also require the use of multi-factor authentication.

    Implementation timeline
    User’s manual: access account for KDPW Group online applications
    Correspondence
    Last modified:07-10-2022 Go up