Persistent and 2-Factor Authentication

Persistent Authentication refers to the ability of the EMS Mobile App to automatically log users in so that they are not required to log into EMS Mobile App every time they need to access it.  When using persistent authentication, a user's EMS Mobile App credentials will become invalid after a period of inactivity equal to or greater than the duration defined in settings. If not using persistent authentication, a user will be forced to re-authenticate after the duration defined in settings has elapsed, regardless of activity.

Two-factor (2fa) refers to the ability of the EMS Mobile App to confirm a user's identity by granting access only after successfully presenting two or more pieces of evidence to an authentication mechanism. This gives EMS Administrators an enhanced security option for their EMS Everyday Users.

Both Persistent and 2fa are available through Native, Windows, and LDAP authentications.

Persistent Authentication

Users with persistent authentication will be prompted to log back in to EMS Mobile App if anything is changed about their profile in EMS Desktop Client on the Everyday Users tab, such as Email, Password, External Reference, Network ID, and Security Template. If you remove a user's access to a process template, they will also be alerted when they attempt to use it, and then they will be prompted to re-authenticate.

  1. Navigate to the EMS Platform Services Admin Page.
  2. Click the Integrations tab.
  3. Click on EMS Mobile.
  4. Select the User Authentication Is Persistent checkbox.
  5. Set the token duration in minutes.

  6. Click Save.

This setting overrides the token duration sent by SSO providers. If a user should leave your organization, you should manually disable his or her profile in EMS, otherwise the employee will have access to EMS Mobile App for the duration defined above. You can also use  to streamline this process. 

Two-Factor (2fa) Authentication

  1. Enable the 2fa parameter in EMS Desktop Client.
  2. Navigate to the EMS Platform Services Admin Page.
  3. Click the Integrations tab.
  4. Click on EMS Mobile.
  5. Select the Require Two Factor Authentication checkbox.