2-Step Authentication Overview

Document created by user.oxriBaJeN4 Employee on Feb 22, 2016Last modified by user.Yo2IBgvWqr on Aug 7, 2017
Version 16Show Document
  • View in full screen mode

Passwords only offer a single layer of protection to a user’s identity. The most complex passwords can be compromised by:

  • Using the same password on more than one website or application.
  • Weaponized software downloaded from the internet or received via email.
  • Clicking on links to malicious web sites.


Mimecast native 2-Step Authentication adds an additional layer of protection by denying access with just a password. Enabled, your administrators and users will need a password and a one-time verification code to access Mimecast. Administrators can choose how 2-Step verification codes are received / generated. The following options are available:  

  • Via email
  • Via SMS
  • Via a 3rd party code generator (e.g. Google Authenticator, Duo, Authy, Symantec VIP Access, FortiToken, and many more).

Depending on your Mimecast subscription, you may have access to Mimecast SMS Services.



2-step authentication has the following benefits:

  • The additional layer of security reduces the risk of a your administrator and user accounts becoming compromised.
  • Group-based configuration provides the flexibility to enable this for all users or selected users only.
  • Works with your existing Cloud or Domain authentication configurations to allow you to enhance security while minimizing impact .
  • Email or SMS delivery of verification codes.
  • Support for 3rd party verification code generators to get a verification code.
    • Using a secure, standards-based implementation for compatibility with a wide range of 3rd party verification code generators.
    • Simple self-service registration process for 3rd party verification code generators reducing IT complexity.
  • Adaptive location based support provides the option to only require a 2nd form of verification when users attempt to login from outside of your trusted networks.


Supported Mimecast Applications


2 Step Authentication is supported for both administrator and end user access, including access to:

  • The Administration Console
  • Mimecast Personal Portal
  • Case Review Application
  • Mimecast for Outlook v7 and later
  • Mimecast Mobile 3.5.2 and later
  • Mimecast for Mac 2.8.9 and later

Customers using earlier versions of our Mimecast for Outlook, Mimcast Mobile, and Mimecast for Mac applications will be prompted to upgrade if 2-Step Authentication is enabled for the user.

The Partner Portal does not currently support 2 Step Authentication.

See Also:


4 people found this helpful