Introducing multi-factor authentication
We take the protection of your data very seriously and are committed to providing the highest level of security to keep your data, and that of your customers, safe. This is why we will be inviting you to a new-look login experience, where you can start using an authenticator app as part of your login process.
We'll send you an invitation to set up multi-factor authentication (MFA). You don't have to do this immediately (you'll have a week to set this up before it becomes mandatory), but we'll send you reminders along the way.
- Download an authenticator app to your mobile phone (see the list below to choose from).
- Log in to Ailo, locate your Settings menu, and follow the setup instructions in the Video example below.
- Read the FAQs to learn more about MFA.
How to set up MFA (video)
What is multi-factor authentication (MFA)
Passwords by themselves can be guessed, written down and otherwise compromised, leaving you and your customers vulnerable. Given the control that property managers have over managing the movement of money, multi-factor authentication (MFA) is appropriate, and mandatory MFA is becoming standard across most property management systems.
With this in mind, we've built a process for you, where your password and an authenticator app on your mobile will work together to get you logged in securely.
Once set up, each time you log in to Ailo, you'll enter a one-time code from your authenticator app to confirm that it's you logging in.
Authenticator app
Multi-factor authentication login is where we have chosen to use an authenticator app process. This generates a random six-digit secure code in a separate app on your mobile, which you then enter on the Ailo login screen on your computer. This approach provides a higher level of security over SMS-based methods, where mobile numbers can be hijacked or spoofed.
You can choose which authenticator app to use, and we've listed some below for you to explore:
|
Once you set up MFA
When you've set up your password and authenticator app, the next time you log in, it will simply be a two step process:
|
Multi-factor authentication FAQs
What is multi-factor authentication (MFA)?
|
MFA is a secure authentication method that requires people to prove their identity by supplying two or more pieces of evidence (or “factors”) when they log in. One factor is something you would be very familiar with a username and password. Other factors are verification methods that you have in your possession, such as an authenticator app on your mobile phone. You’ll need to use it to access https://ailo.pm, alongside your normal password, to access your account. “MFA offers significantly more powerful security and protection against criminals.” ACSC (Australia Cyber Security Centre, part of the Australian Government). You can learn more about MFA using the official ACSC guidelines: https://www.cyber.gov.au/mfa |
Will I need MFA to access the Ailo mobile apps?
|
No, not yet. We will only require MFA on https://ailo.pm. We may introduce security changes to the apps in future. |
Will Renters and Investors need to set up MFA?
|
No, this update only applies to agency users. However, we may review and update consumer security in the future. |
Why can’t I just use a password?
|
We’ll still require a normal password to access https://ailo.pm, but you’ll also need MFA to access your account. Passwords by themselves can be guessed, written down and otherwise compromised, leaving you and your customers vulnerable. Google Research found using authentication apps blocks 100% of tested automated bot attacks for account hijacking, phishing and other security risks. We understand that it’s more convenient to use a password without MFA, but passwords alone are simply not secure enough in 2023 and represent an unacceptable risk to you and your customers. |
|
v.2023.06.06 |