Hi,
Many customers are asking to enable two-factor authentication. It will be a very important security enhancement.
Thanks
Hi YuliyaMotiyets, following your comment here would be my ideal use case:
At our business, we have 1000s of customer accounts using the Sisense platform. For the majority of these, we want users to have quick and easy access to Sisense. It's important for us to make viewing their data as simple as possible. Therefore, mandatory 2FA would actually be negative to our use case.
In our business, we would look for a solution that:
- Didn't force 2FA on new accounts.
- Would give the option to enable 2FA on specific accounts (perhaps via the Admin UI, or in bulk via REST API).
- Would likely use SMS rather than an Authenticator App (appreciate this is less secure, again, this is easier for users to set up - ideally the option for either would be great).
- Was independent of SSO - we don't use this.
In short, it makes the 2FA:
- Optional for accounts that don't need it.
- When it is needed, it would be easy for Sisense Admins to bulk enable / disable 2FA on individual accounts.
- As simple as possible for our customers to use - no need to download a separate authenticator App.
I appreciate our use-case might be a little different to others, so I think a flexible amount of security is potentially what's key for Sisense customers as a whole here.