SI-1110

Multi-factor authentication is a two-step verification process where users are required to authenticate themselves a second time using a time-based verification code. As compared to the single step authentication process, the multi-factor authentication process provides enhanced security.

Previously, if multi-factor authentication was enabled for critical fields, users were required to perform the two-step verification process only while attempting to update the values of critical fields such as email addresses, phone numbers, remittance information and so on. With multi-factor authentication enabled for login, users are required to perform the two-step verification process to log into Ariba Network.

Until recently Ariba Network did not provide a feature for multi-factor authentication, which would significantly improve login security when compared to existing user ID/password authentication. There was no verification mechanism to ensure that the individual logging in was indeed the account holder vs. a nefarious entity that had obtained a user’s credentials. Ariba Network customers were requesting that the applications provide a multi-factor mechanism for authentication that would be comparable to existing functionality that is provided by banking institutions.

Ariba Network login is significantly improved by forcing the logging-in user to enter in a digital token from the authenticator app that is associated to the user account. This will prevent unauthorized use of the associated account should a user’s login credentials become compromised. Enabling this functionality will significantly decrease the likelihood that a nefarious entity could successfully gain access to the Ariba Network using compromised user account credentials.

Buyer and Supplier

https://help.sap.com/docs/SAP_Ariba/978b7e36451a4c2c85321a3ef6f3a7e5/65f50d0a56554dd48bfcfa0e354818a8.html?locale=en-US&state=PRODUCTION&version=cloud

Customer Configured