MFA is required for all Neuroscale accounts and all access to production systems. See the Access Control Policy.
Acceptable methods
In order of preference:
- Hardware security key (YubiKey or equivalent) — strongest, phishing-resistant. Required for production / privileged access.
- Authenticator app (Google Authenticator, Dashlane, Duo) — TOTP code.
- Push notification via the company SSO app where supported.
SMS-based MFA is not acceptable for production / privileged access and is discouraged everywhere else.
Initial enrollment
- Sign in to Rippling.
- Follow the in-product MFA enrollment prompt.
- Add at least two factors — e.g., a hardware key as primary and an authenticator app as backup.
- Save your recovery codes in Dashlane.
Hardware keys
YubiKeys are issued by IT to all engineers and to anyone with privileged access. Request via Account & access requests.
Lost or broken factor
Version history
| Version | Date | Description | Author | Approved by |
|---|
| 1.0 | May 8, 2026 | Initial version | Cameron Wolfe | Ishan Jadhwani |
