When a user sets up two-factor authentication in Mail Assure, there is no recovery code given after finishing setup. When logging into Mail Assure, there is no prompt for a recovery code, and nowhere to put in a recovery code in case a user encounters issues with 2FA. After a user sets up 2FA for their login, they have a button which provides them with Backup Codes in case they encounter issues with 2FA (this provides ...more »
The fact that enabling 2 factor support for the product admin disables the ability to login to the port 10000/admin page is a huge security problem. Second to that the fact that having two factor enabled locks out the product admin when the password expires and needs changing is a major problem as well. We shouldn't have to resort to either turning off 2 factor or contacting support to unlock our accounts everytime ...more »
Absolutely indispensable two factor authentication for online portal https://backup.management with sms or otp app...
There is a serious usability issue for Solarwind's 2FA. They're requiring it on _every_ login, thus forcing us to wait to access our dashboards, wasting valuable time during times that might be critical. Furthermore, they're going to force everyone that is using take control in RMM to use 2FA, and have a dialog trying to get you to use 2FA. 2FA should be required at every login of a _new console device_, and at best ...more »
i was told that the App will not work with accounts with two-factor turned on. i would like to see this completed.
it is security risk not to have the two-factor and in order to get my techs access on the mobile app i either have to turn it off or create a new user with out it.
this is not an acceptable option, and i cannot understand how it was overlooked?
DUO offers a push option which allows you to simply select "Approve" or "Deny" on the phone rather than to gather an ID to be typed in on the dashboard web interface.
This would be a much simpler option for 2-factor authentication.
You can see more information about how this works here:
Securing the administrator login with two factor authentication would be great. This can either be a simple verification code sent to the email address when logging in on a new PC or using something like Google Authenticator.
Alliteratively implementing google single sign-on would mean two factor authentication can be enabled at ‘source’