This article shows how to configure Multi-Factor Authentication (MFA) for sellers as an operator.
MFA adds an extra layer of security by requiring users to verify their identity through a password and a Time-based One Time Password (TOTP). MFA is on by default for all sellers. As an operator, you can configure whether sellers are required to set up MFA and how often they are prompted.
If you’re a seller, learn more here.
Configure seller MFA
- Go to Configuration > Authentication Settings.
- In the Seller MFA section, to require sellers to use MFA, check the Require Seller MFA box.
- In the MFA frequency (days) field, specify the number of days that can pass before sellers are required to complete another MFA challenge.
Note: Other events may trigger an MFA challenge sooner, regardless of the days specified. - Click Submit.
Note: Sellers who have not yet set up MFA see a setup prompt on login. If Require Seller MFA is off, they can dismiss the prompt with Maybe Later and are prompted again after the interval set in MFA frequency (days). If Require Seller MFA is on, they cannot dismiss the prompt and must complete setup before accessing the Seller Portal.
Seller MFA settings
- Require Seller MFA: If enabled, sellers are required to set up MFA for their accounts. If they have not yet set up MFA, they are prompted to do so the next time they log in and cannot bypass the prompt.
- MFA frequency (days): Sets how often sellers are prompted for MFA. This controls both how often enrolled sellers complete an MFA challenge and how often unenrolled sellers see the optional setup prompt. The default is seven days. Failed login attempts, password resets, failed MFA challenges, or suspicious activity may trigger an MFA challenge sooner.
- Allow Passkey login: Allows sellers to log in using a "passwordless" passkey. This feature is currently inactive. Coming soon.
Reset recovery codes
To reset recovery codes as an Operator, you need to log in to the Seller’s account as the seller and follow these steps.
Related articles