Set up multi-factor authentication

User accounts require one-time multi-factor authentication setup to enhance your organization's security.

Before you begin

Role required: Responder, Manager, or Administrator

About this task

The first time you sign in to Incident Response, you are asked to enable multi-factor authentication.
Enable multi-factor authentication screen.
If you want to skip the authentication setup, click Postpone setup.
Note: You can bypass multi-factor authentication 10 times.


  1. Download an authenticator app that supports Time-Based One-Time Password on your mobile device.
    Some examples of authenticator app are as follows:
    • Google Authenticator
    • Microsoft Authenticator
    • LastPass Authenticator
    • Authy
    • FreeOTP
    • Duo
    • Okta Verify
    Note: Other authenticators not listed might also be compatible, but are not tested by Lightstep Incident Response.
  2. Open the app and scan the QR code to pair with your mobile device.
  3. In the Enter 6-digit verification code field, enter the code generated by the Authenticator app.
  4. Click Pair device and Login.

    The application responds with a code every 30 seconds. If you have entered the correct code, your multi-factor authentication setup is complete. If you have entered an invalid code, look for the code on your mobile device again, as it may have refreshed, and enter the code that you see.

    Note: For the code to work correctly, the system time on your computer and mobile device must be in the same time zone.
    You have completed multi-factor authentication setup and are logged in. Subsequent logins require your password and your 6-digit verification code. For more information, see Sign in to Incident Response using single sign-on or multi-factor authentication.