Enforce 2-factor authentication for all users
Enforce two-factor authentication
When a user is created, a 2-factor authentication for the login is forced. Without the assignment of a 2-FA method, the user cannot be created. If you want the SMS pass code method to be used for users, you must first purchase this. The 2-factor authentication settings are available to you, but are optional to apply.
If you have chosen this method, the user must enter an SMS passcode once, which will be sent to him during registration. If the license is reassigned, the user will have to register again, where a passcode will be requested again.
Two-factor
authentication when inviting new users
Proceed as follows:
- Open the "Administration".
- Open the 3-dot menu in the toolbar.
- Select the "Enterprise settings" .
- Open the "Access protection" tap.
- Scroll down to " 2FA Enforcements".
- If desired, activate the "2-factor authentication when inviting new users" function via the checkbox.
- Save your setting.
Two-factor authentication at login
When a user is created, a 2-factor authentication for the login is forced. Without the assignment of a 2-FA method, the user cannot be created. If you want the SMS pass code method to be used for users, you must first purchase this. The 2-factor authentication settings are available to you, but are optional to apply.
Proceed as follows:
- Open the "Administration".
- Open the 3-dot menu in the toolbar.
- Select the "Enterprise settings" .
- Open the tap "Access protection" .
- Scroll down to " 2FA Enforcements".
- If desired, activate the "Enforce 2-factor authentication for user login" function via the checkbox.
- Save your setting.
This article did not answer your question?
We are happy to help you! Just send us a message with your questions and we will get back to you as soon as possible.
Disclaimer
The content of this online help is intended solely for information and documentation purposes for our product idgard® and can be changed at any time without prior notice. We assume no responsibility or liability for errors or inaccuracies. Due to technical developments, uniscon GmbH reserves the right to change the functional scope of the product at any time.
(C) uniscon GmbH
Related Articles
2-Factor authentication default settings
2-Factor authentication settings To increase the protection factor, you can force the use of a 2-FA in idgard®. Changes at this point are only effective for newly created users. To make this setting, you need the permission of an Administrator. The ...Create new users
You can create new users in the user administration via the Create User function. This function is available in the top bar. When you select one or several users in the user overview, the available batch actions are shown in the top bar. To create ...Use case: create new users
The following use case illustrates how users are created in this particular case. The following conditions apply to User A: ● User A should be grated a full license. ● User A shall have permissions to create temporary Boxes and shall be able to share ...Logging in to idgard® using the TOTP password (two-factor authentication)
Logging in to idgard® using the T-OTP (time-based one-time Password) Sensitive data requires a higher level of protection. An authentication app must be installed before the TOTP process can be used. After setting up TOTP, the user must enter a ...Set session timeout for all users
Set session timeout for all users A short expiration period is useful to avoid that unauthorized persons can take over user sessions. Long timeouts should only be accepted when using the service in trusted environments. Without this default setting, ...