Disabling multi-factor authentication for your CS Web account

Alerts and notices

Multi-factor authentication is an additional layer of security that helps protect your firm's confidential data. More details about multi-factor authentication.

Many of your online accounts or software applications are currently protected by a login and password. That password is the single factor in the authentication process — the way that those applications or services confirm your identity. Unfortunately, passwords are easily stolen or hacked, which means that the accounts and data behind those passwords are at risk.

Multi-factor authentication adds at least one more layer of identity verification to that process so your protection against hacking and fraud attempts is stronger and more secure than a simple password. That additional factor can take many forms, such as a physical ID card, a digital confirmation code, or even your fingerprint. You're using multi-factor authentication every time you pay a transaction using a debit card or when you withdraw cash from an ATM: your PIN is one factor and the card itself is another. 

Thomson Reuters strongly recommends that you use multi-factor authentication to provide the highest level of security for your firm and client data. You can disable multi-factor authentication, but doing so removes this additional layer of protection.

Note: This information applies to CS Professional Suite desktop applications. For information on disabling multi-factor authentication in NetFirm CS or Virtual Office CS, see Disabling multi-factor authentication for your login.

Disabling multi-factor authentication for your account

To disable multi-factor authentication from your account, disconnect your paired mobile device. For details, see Disconnecting a paired mobile device from your CS Professional Suite login credentials.


Is multi-factor authentication required for your firm?

If multi-factor authentication is required by your firm administrator, you must have a mobile device paired with your account to log in to your CS Professional Suite applications. Contact your firm administrator to confirm the multi-factor authentication requirements for your firm.

Internal notes

When an admin user cannot log in using multi-factor authentication - such as when they get a new device or their device is not functional - a temporary, 24-hour numerical code can be generated. The temporary code allows them to log in without access to their mobile device.

If multi-factor authentication was not disabled prior to changing mobile devices, the temporary code allows access to pair a new device with their login credentials. To generate this code for an administrative user, see Internal: Generating a temporary MFA code for CS Professional Suite and NetStaff accounts.

All CS Web users will be able to generate a set of emergency access codes for themselves, so if they cannot access their mobile device for MFA, they can use one of the emergency access codes, see Generating your own emergency access codes for multi-factor authentication.

If the firm is having difficulty with the functionality or order status of an authenticator card, see Internal: Forms CS overview and call handling guidelines for more information.