To set up MFA in the x360Portal:

NOTE: MFA is now required by default for all x360Portal accounts. Users will be directed to setup and configure MFA on first login.

1. Log in to the x360Portal.

2. After logging in, you will be redirected to the Multi-Factor Authentication Setup page. 

Click Start Setup to begin. 

3. You will be prompted to select an authentication method. 

You can authenticate by using an app or by using an SMS text message via your phone. 
NOTE: Authenticating with an app is the most secure method.

4. . If you choose to authenticate with SMS, you will be prompted to enter the phone number you wish to use. 

Enter your preferred phone number and click Next to continue.

5. If you choose to authenticate with an app, you will be prompted to download the app of your choice. We support all standard One Time Password (OTP) based authentication applications. Some common examples include Google Authenticator, Authenticator (for iOS), Microsoft Authenticator, LastPass Authenticator and Authy 2-Factor Authentication. 

Click Next to continue.

6. You will be shown a QR code. 

Open your chosen authentication app on your smart device and scan the QR code to create your new account.

Alternative method: If you prefer not to scan the QR code, you can opt to use a secret key instead. Click the Unable to scan? Click here to use a secret key instead link to manually input a 16-digit key code. 

Click Next to continue.

7. You will be prompted to enter the 6-digit code generated by your authentication app. 

This will verify that the new account has been set up properly.

Enter the 6-digit code from your authentication app and click Next to continue.

8. Finally, click the checkbox indicating that you understand you will not be able to access your account without your MFA device. Then click Complete.

With the release of version 9.0.0,  Axcient x360Recover provides basic support for multi-factor authentication (MFA) to enhance security. 

After November 15th, 2023, all users who access RMC directly will automatically have MFA enabled.  

x360Recover MFA supports open One-Time-Password (OTP) applications that run on any smart phone.  You may install any compatible application (such as Google Authenticator or Authy.)

NOTE: OTP is highly reliant on accurate time synchronization. Both the smart phone running the authentication app and the Management Portal must be synced to the correct time in order for both to agree on the generated MFA token.

How to enable MFA (Multi-Factor Authentication) for direct-login x360Recover Manager (RMC) users

1. Login to the x360Portal using the credentials that were emailed to you.

2. Verify that your name and email address are correct.

Choose a new password.

Then, click Enable MFA:

3. Follow the instructions given in your authenticator app to scan the randomly generated QR code. 

If you are unable to scan the code, you can instead use a secret key (Note: This must be supported by your authenticator app).

4. Once your app is configured, enter the generated MFA token, and click Save. 

You will then be shown a recovery code. Copy this code to a safe place. In the event that you lose access to your authenticator app, you can use this one-time code to access your account and set up MFA again.

IMPORTANT: If you lose this code, you will not be able to recover your account without admin intervention.

5. After checking the box indicating that you understand you will not be able to access your account without your MFA device or the recovery code, click Complete. This completes MFA setup, and you will be directed to x360Recover Manager.

Disabling Multi-Factor Authentication for direct-login users

Users with ‘Org Admin’ or ‘Client Admin’ accounts can edit a user’s account via the Users tab.

In the past, it was possible for Admins to un-check the box for MFA. 

IMPORTANT: After November 15th, 2023, you will not be able to disable MFA for direct-login accounts. 

MFA will be automatically enabled for those users who use direct logins.

For information on configuring MFA for x360Portal SSO-enabled accounts, see the “Set up multi-factor authentication (MFA) in x360Portal” section above.

Logging into x360Recover RMC directly with MFA

With multi-factor authentication enabled, an additional step is required to complete login directly to the Management Portal at http://my.axcient.net.

Enter the one-time MFA code generated by the authentication app that you configured when enabling MFA:

If you are unable to access your MFA device, you have the option of using the one-time recovery code that was displayed when you set up MFA for your account (see below). 

Please note that using this code will require you to go through the MFA setup process again, and will generate a new recovery code to replace the one you used.

1. If you are a new partner, you'll first create user accounts for all of your Axcient products in x360Portal 

2. Then, you'll use SSO to access and manage each desired Axcient product (x360Recover, x360Sync, and/or x360Cloud.)

NOTE: By default, SSO access is enabled for x360Recover Org Admins and Org Managers, and disabled for Org Read-only Users. 

Org Admins can enable SSO access for any of their Org-level accounts. Enabling SSO for users allows seamless access to all x360Recover appliances and vaults without requiring a secondary login at each device.

The following list explains each Org user type:

• Org Admin: An Organization Admin can monitor backups, configure SLA thresholds and PSA integration with ConnectWise or Autotask, download or subscribe to BDR usage and summary reports, use the Axcient business continuity features - Virtual office and Runbooks - and manage users in their organization.
• Org Manager: An Organization manager can monitor backups, configure SLA thresholds and PSA integration with ConnectWise or Autotask, download or subscribe to BDR usage and summary reports, and use the Axcient business continuity features, Virtual office and Runbooks
• Org Read-only: An Organization Read-only user can monitor backups and download or subscribe to BDR usage and summary reports

To enable SSO access for org read only users:

1. Click on the Users tab.

2. Select the user account in which you wish to enable SSO.

3. Click edit.

4. In the edit user dialog box, click the checkbox to the right of SSO ACCESS TO VAULTS AND APPLIANCES to enable SSO.

5. Click Save to complete. 

1. To log in an appliance, navigate to the Services page and expand a row.

2. Click the Appliance GUI button. 

If SSO is enabled, you will automatically be logged in without needing to use another set of credentials.  

Alternatively, click the View Service button. 

This will bring you to the Service Details page, and you can click the Appliance GUI button to automatically log in from this view. 

To log into a vault using SSO, you can use the Vaults tab on the dashboard.

Alternatively, you can also log in to an individual Vault Details page by clicking the Vault GUI button.