Enforcing two-factor authentication Follow
License administrators can enforce two-factor authentication to Revizto.
- Supported two-factor authentication types
- Enforcing two-factor authentication for users with "Revizto login" authentication
- Enforcing two-factor authentication for users with SSO authentication
- Best practices
Supported two-factor authentication types
Revizto supports the following two-factor authentication types:
-
Authenticator app. Security codes are generated in the app. The following apps are supported:
- 1Password
- 2FAS
- Duo Mobile
- FreeOTP
- Google Authenticator
- LastPass
- Microsoft Authenticator
- Okta Verify
- OTP Auth
- Email. Security codes are sent by email.
Enforcing two-factor authentication for users with "Revizto login" authentication
Two-factor authentication is tied to an authentication method. If you enforce two-factor authentication for a Revizto login method, the following rules apply to the users that have this method:
- Users that already have two-factor authentication stay signed in.
- Users that don’t have two-factor authentication are required to set up two-factor authentication next time they attempt to access the license or its projects in the Revizto application or at Revizto Workspace.
- All users cannot turn off two-factor authentication.
To enforce 2-factor authentication for an authentication method of "Revizto login" type:
-
Open the authentication method for editing.
-
Select the Enable two-factor authentication for all users that use this authentication method checkbox, and then click Save.
Enforcing two-factor authentication for users with SSO authentication
To enforce two-factor authentication for users with SSO authentication, refer to the identity provider documentation.
Best practices
If you are planning to enforce two-factor authentication, we recommend that you inform your users in advance, giving them time to configure two-factor authentication for their Revizto accounts. You can send a bulk email to these users from Revizto Workspace.
If any of the users don’t configure two-factor authentication in advance, once you enforce two-factor authentication, they will be prompted to configure it next time they attempt to access the license or its projects in the Revizto application or at Revizto Workspace.
To send a bulk email to users that must enable two-factor authentication:
-
Determine the authentication method to enforce two-factor authentication.
This method must have the "Revizto login" type.
-
Open the list of license members and filter them by the authentication method.
-
Select all listed users and send them an email with the request to enable two-factor authentication.
For the instruction on configuring two-factor authentication, refer to Editing security settings.
Comments
0 comments
Article is closed for comments.