In Users/User Management in the CMC, allow SuperUser's to see which users have 2FA enabled.
Allow users to remember 2-factor authentication on devices they trust and have them re-authenticate after a certain number of days.
This would make this less of a pain to access N-Central from a trusted work computer, yet keep it secure for access from other computers.
For those who do not login from the RMM dashboard and independently use the Backup product, the Backup Console URGENTLY requires a MFA to log in. A compromised password can expose hundreds of client backups! In this day and age, not having a MFA to access such a sensitive portal relegates is not acceptable.
(translated from Dutch)
Request to add a setting to enforce 2FA for all mail users on first login.
When a user sets up two-factor authentication in Mail Assure, there is no recovery code given after finishing setup. When logging into Mail Assure, there is no prompt for a recovery code, and nowhere to put in a recovery code in case a user encounters issues with 2FA. After a user sets up 2FA for their login, they have a button which provides them with Backup Codes in case they encounter issues with 2FA (this provides ...more »
ESET has a very robust 2FA proposition. Being that N-Central is a system that has to have security in the top of it's priorities, I would suggest support for more 2FA products like ESET 2FA. ESET 2FA has all the API documentation readily available for development of support in applications.
It would be nice if there were an option to have the verification code text to my phone number rather than sent to a smartphone app. Having to open my phone and then the app is slightly clumsy. I'd rather MSP 2fa work similar to Google App and Office 365 2fa, with a simple text msg.
I think that would be a good addition to extend the use of the two factor authentication for windows logins as well not only for remote login.
The way 2FA stands now, if a user wants to add another device for 2FA, we have to reset their 2FA and then have them bring in all devices they want to use 2FA on and connect them at once. Please add a 2FA management feature where we can add, remove, and reset devices for users ad-hoc.
As 2FA is compulsory now, it would be great to customize the email that goes to our customers for 2FA. Currently for us, the sender address is set to "email@example.com". If we can change the sender email address and change context of it, it'd be great.
The phone calls, emails, and numerous complaints on here should make it self-evident already. There are a ton of them so there's really no single place to post my thoughts without repeating the same information on a lot of posts. So I'll start a new one and hope the community here might see it and add their .02. The new poorly-implemented IP restrictions and 2FA crap are a huge hurdle we have to deal with every day - ...more »
It would be nice to have 3 more options for 2FA:
1. Make it ignore the Wallchart
2. have it specified by external IP instead of Users
3. Make the 2FA Users selectable