Sign In
- Log in to Dayforce Identity Access Management (IAM) for the first time or as an existing user.
- Access pages to reset your password if you forgot it.
From the Identity Access Management home page, you can open other applications that are available to you.
Contents
When you log in to IAM as a first-time user, you use the following information from your Welcome email:
URL - URL to log in to IAM
User Id - Combination of your user name and organization, for example, jsmith_palmettoltd
Caution: The URL to log in for Dayforce Tax and Dayforce Powerpay users may be different. For more information, contact your Dayforce representative.
Set your password as part of the process when logging in the first time. You can also reset your own password if you set up your secret questions and answers and remember them. Be sure to review the password requirements for your new password.
If your organization has enabled multifactor authentication (MFA), you will need to set up an additional means of verifying your identity when logging in. Refer to First-Time User Process with MFA Top for details on how to setup MFA.
You must select your secret questions and enter your answers to each question the first time you log in to Dayforce Identity Access Management (IAM).
Identity Access Management uses the answers to these questions to verify your identity in various scenarios, such as if you forget your password.
If for any reason you can't set up your secret questions during the initial log in process, you can set them up on the Secret Questions page (Menu > My Profile > Secret Questions)
If your organization uses Multifactor Authentication (MFA), you must complete the MFA first-time user setup. Following that, each time you log in, or based on your organization's MFA policy for remembering users, you will be required to verify your identity using MFA.
- In the Welcome email, click the IAM URL.
- On the Sign In page, click First Time User?
- On the First Time User page, enter your User Id from your Welcome email. Your user Id is formatted as your username_organization, for example, jsmith_palmettoltd.
- Click Submit.
- Review the confirmation message and click OK. The Sign In page appears.
- In your email account, open the email that contains your 10-digit security code and click the URL.
- On the Security Code page, enter your security code, or copy it from your email and paste it into the Security Code field.
- Click Submit.
- On the Set New Password page, enter your new password, and then enter it again to confirm it.
- Click Save. A confirmation message appears stating that your password was changed and an email was sent to your email account.
- On the Security Questions page, select a different question and enter an answer for each question on the page. Answers aren't case-sensitive, but they are space-sensitive.
- Click Save. The Sign In page appears.
- On the Sign In page, enter your User Id and Password.
- Click Sign In.
For first time users of organizations using multifactor authentication, the following process is used to validate the identity of the person attempting to log in to IAM.
- On the Log In page, click the First Time User link.
- When prompted, enter the User ID received in your Welcome email and then click Submit.
- Click OK on the Email Sent notification message. You will be redirected to the IAM Sign In page.
- Check the email address associated with your IAM user account. You will receive an email message containing a security code. The security code is valid for 15 minutes.
- Click the Create Your Profile link.
- On the Security Code page, enter the security code provided in the email and then click Submit.
- On the Set New Password page, enter and confirm your new password. The default password requirements set by Dayforce are that the password:
- Must be a minimum of 7 characters
- Must contain at least 3 of the following:
- Numbers
- Capital letters
- Lower-case letters
- Special characters including [~`!@#$%^&*()+=|\{}':;.,<>/?[\]""_-]
- Is case-sensitive
- Click Save and Proceed.
- On the Secret Questions page, select a question in each of the question fields. Previously selected questions are not available to be selected again to prevent duplication. On the right side, enter your answer to each question. The answers you enter are masked for security purposes so use caution when entering your responses to avoid typos, misspellings, etc., that could prevent you from responding to the security question prompts at a later time.
- Click Save and Proceed.
- On the Set Up Multifactor Authentication page, select the authentication method you would like to use. In our example we will show you how to set up the Smartphone App (Authy) which, once set up, enables you to verify your identity on your phone with just a tap. Alternatively, you can opt to have a text message, or an automated call sent to your phone with a verification code that must be entered to verify your identity.
- Click Next.
- In the Primary Phone Number field, select the country code from the drop-down list.
- In the next text box, enter the telephone number with no dashes or spaces.
- In the Exten text box, enter an extension if needed.
- If you want to include a secondary phone number, select the Include Secondary Phone Number option and enter the secondary phone number.
- Click Next.
- To verify the phone number that you entered, a one-time code must be sent to the phone number you entered. Select how you would like to receive that code:
- Text Message – a text message is sent your phone
- Voice Call – a phone call is placed to your phone and an automated voice provides the code
- On the next page, enter the code that you received. If you did not receive the code, click Resend code to resend the code to the same number. Additionally, you can change the method of receiving the code by clicking the link below Resend code.
- Install the Twilio Authy app from the Apple App Store or the Google Play store and set up an account using the phone number you verified.
- Once you have installed the Authy app, click Next.
- In the Authy app on your phone, you will receive a security token. The security token is valid only for 20 seconds before a new key is generated.
- On the Multifactor Authentication page, enter the security token in the text box. You must enter the security token shown in the Authy app and click Next before the token expires.
- Click Continue.
This completes the setup of MFA. Users are directed to the IAM Home page or the landing page of the partner application.
- On the Sign In page, enter your User Id and Password.
- Click Sign In.
The process we show you below supposes that you have completed the first-time user setup, that your password current and not about to expire, or has expired, and that you have completed the setup of MFA. If you have not completed the first-time user setup and setup MFA, or if your password has expired or is about to expire, you will be prompted to take the necessary actions to resolve those issues.
- On the IAM Log In page, enter your username and password and then click Sign in.
- A notification is sent to the Authy app. Alternatively, if you opted to receive text messages or voice calls, a text or phone call is sent to your phone with a code that you will need to enter to proceed.
- If you do not respond to the Authy app notification within 10 seconds IAM displays a message saying, “We didn’t hear from you.” .This is not an expiration and you can continue to approve the code that was sent. Alternatively, you can click the Try Again button to send another code or you can click the Sign in another way button to log in using one of the following methods, the options available vary depending on whether you provided a secondary phone number:
- Mobile app notification – sends another notification to the Authy app
- Mobile app token – a code is displayed in the Authy app which can be entered in IAM to complete the login process
- Text message to primary number – a text message is sent to your primary number containing a code which can be entered in IAM to complete the login process
- Voice call to primary number – an automated voice phone call is sent to your primary phone number; the voice reads a code to be entered into IAM to complete the login process
- Text message to secondary number – a text message is sent to your secondary number containing a code which can be entered in IAM to complete the login process
- Voice call to primary number – an automated voice phone call is sent to your secondary phone number; the voice reads a code to be entered into IAM to complete the login process
Note: If you fail to log in too many times using any of the methods, your account will be locked and must be unlocked by you IAM administrator before continuing.
- If you selected the Mobile app token option, enter the seven-digit token on the Enter token from Authy app page, and then click Login.
- If you selected the text message option for either your primary or secondary phone numbers, enter the code sent to your phone in the Enter verification code field. If you did not receive the code, click the Resend link to have another code sent to your phone.
- If you selected the Voice Call to option for either the primary or secondary phone number, enter the voice code in the field provided on the Enter Voice code page. If you did not receive the call, click the Call me with code again link.
Caution: If you fail to authenticate too many times your account will be locked and your Identity Access Management admin will be required to unlock your account.