Multi-Factor Authentication

How can I enable MFA in OneStop Reporting?

Multi-factor authentication cannot be managed in the OneStop Reporting portal; this must be done in Connect (Visma Home).

Click here to log in to Visma Home.

We also have a knowledge article here Open that explains how to set it up in Visma Home.

User signs in to OneStop Reporting with Multi-Factor Authentication

  1. In the Username/Email field, enter your email or username.
  2. In the Password field, enter your password.
  3. In the Verification code dialog, enter the code from your authenticator app.
  4. Click Verify.

If you do not have a verification code, click the Do not have a code? link to read more about the MFA setup check link: Open)

What is Multi-Factor Authentication

Multi-Factor Authentication, (2FA), (MFA) is an enhanced security system that verifies a user’s identity by requiring two or more forms of authentication. Rather than just asking for a username and password, MFA requires additional credentials, such as a code from the user’s smartphone.

MFA is an effective way to provide increased security. Usernames and passwords can be stolen, and they have become increasingly susceptible to brute force attacks. MFA creates multiple layers of security to help increase the confidence that the user requesting access is actually who they claim to be.

With MFA, even if an attacker manages to learn the user's username and password, it is useless without also having possession of the additional authentication method. In OneStop Reporting, MFA works by requiring two authentication methods:

  • Something you know (username and password)
  • Something you have (an authenticator app on your mobile device)

What is an authenticator app and how does it work?

An authenticator app is usually installed on a smartphone and you scan a barcode or enter a key to create an account. After the account is created, the authenticator app generates a 6-8 digit passcode every 30 seconds. The passcode can, for example, be used for login as an extra authentication method in addition to a username and password.

The passcodes are generated from a secret code that is shared between the service you are using, such as OneStop Reporting, and your device, as well as the current time.

Google Authenticator app example

Where can I get an authenticator app and which one should I use?

There are a variety of authenticator apps you can download to your phone from Google Play and the IOS App Store, but we recommend that you use Google Authenticator or Microsoft Authenticator, as those are the ones we have fully tested our MFA solution on.

For more information about installing and setting up an Authenticator app, see Install and set up Authenticator app

Last modified October 7, 2025