Acceptable methods
In order of preference:- Hardware security key (YubiKey or equivalent) — strongest, phishing-resistant. Required for production / privileged access.
- Authenticator app (Google Authenticator, Dashlane, Duo) — TOTP code.
- Push notification via the company SSO app where supported.
Initial enrollment
- Sign in to Rippling.
- Follow the in-product MFA enrollment prompt.
- Add at least two factors — e.g., a hardware key as primary and an authenticator app as backup.
- Save your recovery codes in Dashlane.
Hardware keys
YubiKeys are issued by IT to all engineers and to anyone with privileged access. Request via Account & access requests.Lost or broken factor
- Lost YubiKey → see Lost or stolen device. Treat as a security incident.
- Phone replaced / app lost → contact helpdesk@neuroscale.ai for re-enrollment after identity verification.
Version history
| Version | Date | Description | Author | Approved by |
|---|---|---|---|---|
| 1.0 | May 8, 2026 | Initial version | Cameron Wolfe | Ishan Jadhwani |