Set up multi-factor authentication

User accounts use one-time multi-factor authentication setup to enhance your organization's security.

Before you begin

Role required: Responder, Manager, or Administrator

Note: MFA must be enabled on an account prior to setting it up. See Enable multi-factor authentication.

About this task

The first time you sign in to Incident Response, you are asked to set up multi-factor authentication.

If you want to skip the authentication setup, select Postpone setup.
Note: You can bypass multi-factor authentication 10 times.


  1. Download an authenticator app that supports Time-Based One-Time Password on your mobile device.
    Some examples of authenticator app are as follows:
    • Google Authenticator
    • Microsoft Authenticator
    • LastPass Authenticator
    • Authy
    • FreeOTP
    • Duo
    • Okta Verify
    Note: Other authenticators not listed might also be compatible, but are not tested by Lightstep Incident Response.
  2. Open the app and scan the QR code to pair with your mobile device.
  3. In the Enter 6-digit verification code field, enter the code generated by the Authenticator app.
  4. Select Pair device and Login.

    The application responds with a code every 30 seconds. If you have entered the correct code, your multi-factor authentication setup is complete. If you have entered an invalid code, look for the code on your mobile device again, as it may have refreshed, and enter the code that you see.

    Note: For the code to work correctly, the system time on your computer and mobile device must be in the same time zone.

    You have completed multi-factor authentication setup and are logged in. Subsequent logins require your password and your 6-digit verification code. For more information, see Sign in to Incident Response using Single Sign-on, OAuth, or multi-factor authentication.

    If you replace the phone or authenticator that you had, see Reset your multi-factor authentication.