Transitioning to the new authentication workflow
The following instructions apply to users who created an eCatholic Connect account prior to September 2024. The new login workflow described in this article will be launched in September 2024 to all users.
In September 2024, eCatholic will be updating the login workflow you use to access the Connect product. The new experience will enhance your account security and user experience.
This article explains the simple transition you will experience from the original login to the new login experience, as well as how login will work in the future.
What’s changing about your login workflow
First, the design of the login screen itself has been updated, shown below:
Additionally, the mechanisms you use to login are new:
- Email + Password login - You'll now log in by entering the login email for your account. You'll also be prompted to create an account password. One-time security codes sent to your email address will no longer be used as the main login mechanism.
- Increased security via Two-Factor Authentication (2FA) - You'll be prompted to set up 2FA for your account. You may choose to receive a code via a) text message or b) an authenticator app. Once set up, you may choose to skip 2FA for 30 days on future logins when using a trusted device. Prior to Sept. 2024, 2FA was not supported.
What to expect the first time you log in
As a result of these changes, here's what you can expect the first time you log in with the new workflow.
- Enter your login email - First, you'll be prompted to enter your account login email. This is unchanged; your original login email will continue to be the email address you use to log in to your account.
- Enter a security code - Second, you'll be asked to enter a six-digit security code sent to your email address.
- Create an account password - Third, you'll be prompted to create a new account password for the first time. The password requirements will appear on the screen as you type.
- Set up 2FA - Finally, you'll need to set up 2FA security for your account. See below for full details.
Once you've completed these steps, you'll be logged in to your account!
What to expect on subsequent logins
Once you've transitioned your account as described above, here's the workflow you can expect to log in to your account in the future:
- Enter your login email
- Enter your password
- Enter 2FA security code
Streamlining your login experience
To make the login process easier on your trusted, personal devices, you may use the following features:
- Remember email: Use this checkbox if you'd like your email address to be automatically populated on the login screen so you don't have to manually enter it each time you log in.
- Remember this device: Use this checkbox to skip 2FA for 30 days so that you can log in with your email & password only. Do not select this if logging in from a public or shared device.
Setting up 2FA
To increase your account security, 2FA will now be required to access your account. This means you will be prompted to enter an additional one-time code to log in. You can choose to:
- Have the code sent to your mobile number via text message
- Retrieve the code from an authenticator app
Setting up 2FA via SMS text message
To set up 2FA via SMS text message, click the SMS Text Message button on the Enable 2FA security screen.
1 - Enter your mobile number - Enter a number at which you can reliably receive SMS text messages, then click Next.
2 - Verify your mobile number - You will then receive an 8-digit verification code via text message at the mobile number you just submitted. Enter the verification code on the next screen, then click Submit.
Setting up 2FA via authenticator app
To set up 2FA via authenticator app, click the Authenticator App button on the Enable 2FA security screen.
1 - Set up your authenticator app - Open your authenticator app (e.g., Google Authenticator) and refer to your authenticator app's directions for setting up a new account via QR code. Scan the QR code shown on the Add Authenticator App screen, then click Next.
2 - Verify your authenticator app - Enter the 6-digit authentication code from the authenticator app, then click Submit.
2FA recovery (backup) codes
After you've successfully set up 2FA for your account, you will be given a set of 2FA recovery (backup) codes. You'll need these backup codes if you ever lose access to the device you use for 2FA. It is critical to securely store the backup codes.
If you do lose access to the device you use for 2FA, you may enter one of your backup codes on the 2FA security code screen to gain access to your account. Then you should reconfigure the 2FA method for your account.