Example
This article will cover the following:
MFA is designed for your employees using CAKE only. Affiliates, Advertisers, and Buyers do not use this feature.
What Is Multi-Factor Authentication?
Multi-Factor Authentication (MFA) is a security measure that protects user accounts by requiring two forms of verification before granting access. Within CAKE, the first factor is the standard username and password, and the second is a 6-digit verification code generated by an authentication app on the user's mobile device.
Why Was MFA Built?
MFA was introduced to strengthen the security of CAKE employee accounts and reduce the risk of unauthorized access. It ensures that even if a username and password are compromised, a malicious actor still cannot access the account without the second verification step. This added layer helps protect sensitive platform data and supports compliance with security best practices.
What Authentication Apps Are Supported?
CAKE supports the most widely used mobile authentication applications, available for both iOS and Android:
| App | iOS | Android |
|---|---|---|
| Google Authenticator | Download | Download |
| Microsoft Authenticator | Download | Download |
What Are the Best Practices for Rolling Out MFA?
Before enabling MFA, follow these best practices to ensure a smooth rollout:
- Download the App – All employees should install a supported authenticator app on their mobile device before the launch date.
- Set a Release Date – Choose an internal date to activate the MFA requirement.
- Communicate Early – Let employees know in advance that MFA will be required. Affiliates, Advertisers, and Buyers are not affected.
- Enable the Global Setting – Activate the "Enable Multi-Factor Authentication" setting on your chosen launch date (see below for details).
- Guide Setup – On their next login, employees will be prompted to scan a QR code using their mobile app, enter the 6-digit code generated by the app, and submit to complete login. Once completed, all future logins will require the code after entering a username and password.
How Do I Enable MFA on My System?
To enable MFA on your CAKE account, follow these steps:
- Navigate to the Setup main tab.
- Navigate to the Security sub tab.
- Select Settings within the Security tab.
- Check the box for "Enable Multi-Factor Authentication."
- Optionally check the box for "Remember MFA for 30 Days."
- Click Save.
What New Functionality Is Available With MFA?
MFA introduces several new user experience features:
- Setup MFA Code Screen – Automatically shown to employees logging in for the first time after MFA is enabled. They must scan the QR code and enter their 6-digit verification code to proceed.
- Provide MFA Code Screen – Appears to users who have previously completed setup. They must provide the current 6-digit code generated by their app.
- Account Recovery – If a user is locked out, an admin can use the "Recover Account" button from the Contact Card to reset their username, password, and MFA setup. If only a password reset is needed, the "Reset Password / Change Password" button is available on the user's own contact card.
- New IP / Device Alert – Users will receive an email notification if a login occurs from a new IP address or device.
Frequently Asked Questions
The user will be redirected to the login screen with a message indicating the login was invalid. All credentials — username, password, and MFA code — must be correct to gain access.
The user will be prompted with the Setup MFA Code screen immediately after successfully entering their username and password.
No. The MFA feature applies only to internal employee users of CAKE.
No. You can enable "Remember MFA for 30 Days" in your global settings. Custom windows can be requested by submitting a support ticket to support@getcake.com.
If you have any questions regarding Multi-Factor Authentication, please reach out to your dedicated CAKE Client Success Manager/Account Manager or contact the CAKE Support Team at support@getCAKE.com.