We transitioned to a different MFA provider (Auth0) in January 2024 resulting in all users transitioning to this provider for secure logins to the ProcessUnity Global Risk Exchange platform. Below are the steps outlining how to configure your device with ProcessUnity Exchange login and related information. For FAQs around MFA, please see this article.
Table of Contents
- What are the configuration steps for new users?
- What are the configurations steps for existing users?
- How do I use the recovery code to login?
- Why isn't my invitation code taking me to the Exchange platform to log in?
- Why isn't password reset working?
________________________________________________________________________
What are the configuration steps for new users?
This is applicable for users who have not previously registered or logged into the Exchange platform.
-
Clicking Accept Invitation button on the claim a company invitation will prompt a registration email to be sent to you.
-
Select complete registration in your registration email sent from no-reply@notifications.cybergrx.com. This email will allow you to open a web browser to create your password. Input password that meets criteria, select submit and you will be auto-routed to our login page.
If you are not auto-routed, please navigate to portal.cybergrx.com/login and enter the email associated with your account and your newly created password. - Log in to your account at portal.cybergrx.com. Enter your email and password and login.
If you are the first user to login to your company's account, by default you are not required to complete steps #3 & #4. If after login you would like to enable MFA for your user, you may do so on the Security Settings page. This page can be accessed by clicking your initials in the top right corner.
-
Set up MFA with your preferred authenticator app. Scan the QR code with an authenticator app on your phone. After scanning the QR code, you will see a 6-digit security code, refreshing every minute. Enter the 6-digit security code on the MFA setup screen.Keep your authenticator app active after configuration for the 6 digit code found within will be required upon each, future login.
-
A recovery code will be provided, copy this code and put it somewhere safe for future reference. It can be used as an alternative login method in case you do not have the device you configured your MFA with.
- You’re all set! Once your security code is verified, you are now logged in and ready to continue using the ProcessUnity Global Risk Exchange portal.
NOTE: If you would like to disable MFA at any time, you may do so through the Security Settings page. This page can be accessed by clicking your initials in the top right corner.
What are the configuration steps for existing users?
This is applicable for users who have previously logged into the ProcessUnity Exchange platform.
- Log in to your account at portal.cybergrx.com.
- Upon login you will be prompted to log out and then log back in, initializing the MFA configuration process with auth0. Follow the prompt of logging back in to proceed with MFA configuration.
- Scan the QR code with an authenticator app on your phone. After scanning the QR code, you will see a 6-digit security code, refreshing every minute. Enter the 6-digit security code on the MFA setup screen. Keep your authenticator app active after configuration for the 6 digit code found within will be required upon each, future login.
- A recovery code will be provided, copy this code and put it somewhere safe for future reference. It can be used an alternative login method in case you do not have the device you configured you MFA with.
- You’re all set! Once your security code is verified, you are now logged in and ready to continue using the Exchange portal.
NOTE: If you would like to disable MFA at any time, you may do so through the Security Settings page. This page can be accessed by clicking your initials in the top right corner.
How do I use the recovery code to login?
- Input your credentials, after doing so you will be prompted to input the 6 digit code from your authenticator app. Select 'Try another method', then the 'Recovery code' option.
- Copy/paste your recovery code that you saved during the initial configuration process into the provided space, select 'continue'.
- Upon doing so you will be provided a new recovery code, copy this code and put it somewhere safe for future reference.
- Click 'continue' to login to the platform.
-
If you are in a situation where you no longer have access to the device you configured MFA to and therefore you need it reset to re-configure to a new device, go to the Security Settings page
by clicking your initials in the top right corner.
- On the Security Settings page you will see a record of the Authenticator App you have configured, select 'Remove', in the prompt that appears select 'Agree' to effectively remove it from your user.
- Select 'Add' to add a new authenticator app configuration for MFA. This will trigger a prompt to appear asking if you would like to configure your authenticator app now or upon next login. If you want to defer it to next login, select 'Agree'. If you would like to configure it now, select 'Agree & Logout'.
- Regardless of which option you choose, you will follow the typical MFA configuration steps as outlined in step #3 listed here.
Why isn't my invitation code taking me to the Exchange platform to log in?
Log in: Invitation Code - Claim a Company
If you are a new company on the exchange, you will receive an email with a registration link for the ProcessUnity exchange.
When a customer places an order on a Third Party who is not already apart of the Exchange, an email is sent to the customer's contact listed on the request. The email has an invitation code that can be accepted. Once it is accepted, a registration email will be sent to the contact who accepted the invitation code.
When a Third Party member shares a report with a client not yet apart of the exchange, it is the same process.
NOTE: Clicking 'accept invitation' will not take you to the Global Risk Exchange. The contact must await the registration email to gain access to the Exchange.
If the contact accepts the Invitation, but does not receive the registration link, check that emails from our domain (@CyberGRX.com) are not directed into your spam folder or blacklisted by your IT security team. Additionally, they can attempt a password reset on the Global Risk Exchange: https://portal.cybergrx.com/login
If additional support is needed, the contact can reach out to ExchangeSupport@processunity.com for further assistance.
NOTE: If your company is new to the exchange, only one user can be provisioned as the Account Administrator by ProcessUnity. Any others users will need to be added subsequently by the Account Administrator: Adding and Managing Users Guide
Why isn't password reset working?
Log in: Password Reset
If your organization is NOT new to the exchange and you are already an Exchange user, you can utilize the password reset on the log in page: https://portal.cybergrx.com/login
The password reset notification will come from no-reply@notifications.cybergrx.com. Make sure emails from our domain (@CyberGRX.com) are not directed into your spam folder or blacklisted by your IT security team. The password reset is time sensitive and will expire after 20 minutes.
NOTE: Password reset only works for users already registered to the Global Risk Exchange. If you don't receive a password reset, reach out to ExchangeSupport@processunity.com to confirm if you are a registered user.
OR
If you know your organization is NOT new to the exchange and you are NOT already an Exchange user, you will need to connect with your company's Account Administrator. If you do not know if your organization already exists on the exchange or who your Account Administrator is, you can reach out to ExchangeSupport@processunity.com for further support.