Version 10

    We make the cooperation in Daimler Supplier Portal even safer.

    Together with you, we want to make cooperation in the Daimler Supplier Portal even safer.

    To this end, we will use new and easy-to-use security mechanisms in the Daimler Supplier Portal.


    In September 2020, we asked them about surveys on the use of other authentication methods in addition to a login.

    We have received about 15,000 feedback, for which we would like to thank you very much.

    The so-called Multi Factor Authentication (MFA) or Second Mean makes the use of Inernet services even more secure. You may be familiar with this. from your private environment from online banking, or from cloud services, where they provide a further confirmation of your identity in addition to the login (e.g. via SMS-TAN or fingerprint).


    Results from the Portal Manager survey:

    • About 70% of portal managers use their mobile phone for business purposes
    • Approx. 55% use further authorization already in the business environment outside the Daimler Supplier Portal
    • Approx. 40% already use the authentication methods available in the MFA service
    • About 60% are not yet sure whether they can use the authentication methods available in the MFA service in the business area
    • More than 2,200 textual feedbacks

    We have received your feedback in order to optimize our planning in a user-oriented manner.


    On this portal page we will keep you informed about the introduction.

    Hint: Therefore, "Follow" this page to be automatically informed of changes.

    Download

    Full User Guide

    pdf(1,56 MB)-1.11.2021

    Guide for using hardware Security Key

    pdf(0,13 MB)-1.11.2021

    Guide for using Authenticator Apps

    pdf(0,30 MB)-1.11.2021

    Quick Guide using Yubikey

    pdf(0,20 MB)-1.11.2021

    FAQs

    What is MFA ?

    Multi-factor authentication (MFA) extends access permissions by checking multiple independent characteristics (factors).

    In our daily work, we are all familiar with logging in to applications with our UserID and password. But there are applications that allow access to sensitive data.

    In such cases, the use of an additional, different login (=multi-factor authentication) helps to protect this data from attacks (e.g. phishing) that are now carried out by cybercriminals.

    This is certainly known to you by now, for example, from online banking.

    Why is Daimler introducing MFA in the Daimler Supplier Portal?

    The ever-increasing digital data exchange with correspondingly increasing online crime forces partners to use secure ways of communicating data. For this reason, Daimler AG will also provide for further protection (only) for relevant applications for its central data exchange platform for suppliers.

    Additional security solutions must be implemented for applications that provide access to sensitive data, either for you or for the enterprise.

    One of the most important applications of the Daimler Supplier Portal that needs to be protected is the access management tool GEMS. GEMS is therefore the first application to be secured with MFA.

    Who is affect by MFA in the Daimler Supplier Portal ?

    At the start, this only applies to the / your portal managers in your location, which portal users administer in your location (approve, entitle, ...)

    Which Daimler applications are covered with an MFA ?

    • GEMS (Administration tool for portal managers / org admins)
    • iCust


    Further applications are expected to follow (e.g. engineering and purchasing applications) and are continually supplemented in this list.

    When will MFA be activated in the Daimler Supplier Portal ?

    We plan to introduce MFA for GEMS in the 2nd quarter of 2021.

    However, MFA is initially only perceived by portal managers.

    Registration in the Daimler Supplier Portal is not affected.

    What should I do if I am affected ?

    Nothing at this stage!

    We are currently preparing everything for the activation of MFA in the 2nd quarter of 2021.

    We keep you informed on this information page.

    Note: If you want to be informed about updates to this page, "follow" it on this page (menu item at the top right).

    What are the supported ways to authenticate ?

    • "PingID" mobile app - available on CoD & UoD
      • The current minimum requirements for the "PingID" mobile app are:
        • iOS version 11.0 and higher
        • Android version 6.x and higher

    • Authenticator app of choice, e.g. Microsoft Authenticator / Google Authenticator / ...


    • Using a supported hardware security key (only on supported browsers / platforms) - Procurement of hardware security keys has to be managed individually
      • For Yubikeys, currently following types are supported:
        • YubiKey 5 NFC
        • YubiKey 5C
        • YubiKey 5 Nano
        • YubiKey 5C Nano
        • Yubikey 5Ci (USB-C)
        • Security Key
        • Security Key NFC
      • Security protocol support:
        • Yubico OTP (One Time Password)
        • Universal 2nd Factor (U2F)
        • FIDO2

    Do you have issues setting up MFA?

    Please make sure you read all the necessary information documents in the download section above. If you still have issues, you can contact our support:


    Please use our feedback form to report back
    experiences and opportunities in your company.