trident icon indicating copy to clipboard operation
trident copied to clipboard
verified publisher icon tridentli

Bug: Force 2FA System Setting

Open stewrg opened this issue 8 years ago • 4 comments

When forcing 2FA on a system wide basis new users (who have not yet enabled 2FA) are not able to log on to the system.

When turning on this global setting would it be possible to send every user (who has not yet enabled 2FA) a one-time code to enter into the 2FA window to enable them to log in and set up this feature. (They will obviously already know their password - so I suggest there would be no loss of security sending this in the clear to users who have not yet enabled their PGP)

stewrg avatar Feb 03 '17 10:02 stewrg

Hi Stew, What if it allowed Login, but no other actions until 2FA is configured when that bit is set?

bapril avatar Feb 07 '17 00:02 bapril

That would be the perfect solution :)

stewrg avatar Mar 21 '17 13:03 stewrg

We'll schedule this for a fix soon :)

massar avatar Mar 21 '17 14:03 massar

Brilliant. Thank you. This is a high priority for us as we wish to force 2FA on all users.

stewrg avatar Mar 30 '17 22:03 stewrg