This is part of a series of educational posts about Multi-Factor Authentication (MFA). As we receive questions, we will begin posting those that apply to all sites, along with answers.
Q1: Once a user authenticates on a specific computer, how long before they will have to authenticate again on that specific computer?
A1: The site administrator will have the ability to set the parameters from the minimum (1 day) to the maximum (still being determined by the IRS Security Working Group) for each preparer depending on the needs of the site. When we turn the feature on, it will be defaulted to the IRS Security Working Groups recommendation. As we receive the details, we will update the answer.
Q2: Would a TaxSlayer update wipe out the MFA Authentication?
A2: No, we do not anticipate this happening.
Q3: Would a computer or browser update wipe out the MFA Authentication?
A3: We have not experienced this with our other software applications currently using MFA. If the host site performs some type of maintenance on the computers on a nightly basis (such as wiping them and applying a fresh profile), the users will have to authenticate each day regardless of the range set by the site administrator because it will be like logging into a new device.