Two factor Authentication for admin

Question asked by rishikesh Somshetti - 5/18/2021 at 10:51 AM

Answered

Two-factor Authentication is a good feature added in SmarterMail but we do not see it being added for admin users. Also, the admin login IP restriction which was available in SmarterMail 15.x is missing in SmarterMail 17.x. What additional mechanism SmarterMail 17.x has to protect these important accounts?

Regards,

Regards,

Rishikesh Somshetti
NetGains Technologies Pvt Ltd.,
Website: www.netgainstechnologies.com

17 Replies

Reply to Thread

Kyle Kerst Replied

5/18/2021 at 11:00 AM

Employee Post Marked As Answer

2FA is not available for system administrators at this time. IP Restriction is still possible, and can be found within the user configuration in Settings>Administrators:

Kyle Kerst IT Coordinator SmarterTools Inc. www.smartertools.com

Netmate Replied

5/19/2021 at 3:00 AM

Please add 2FA for system administrators ASAP. Few of our prospective customers rejected SmarterMail due to lack of this feature.

Manuel Martins Replied

5/19/2021 at 4:47 AM

Ionel Aurelian Rau Replied

5/19/2021 at 6:47 AM

In fact 2FA should be supported for all web logins, period. We too have this requirement and SmarterMail is the only Internet facing service that still does not fully support it (2FA only works for normal users with non-AD synced accounts).

Ideally, 2FA should be overhauled to cover all logins (internal and AD accounts, normal and admin users). If anyone else also finds this useful, please also upvote this thread: https://portal.smartertools.com/community/a94026/2-factor-authentication-for-smartermail-with-active-directory-accounts.aspx

Netmate Replied

5/19/2021 at 9:23 AM

While showing demo of SmarterMail to prospective customers, most of them ask one simple question. Why SmarterMail supports 2FA for simple user accounts, but not for the all powerful System Admin accounts? Sadly, we have no answer to that question.

rishikesh Somshetti Replied

6/5/2021 at 10:19 AM

We have upgraded SM to the latest SmarterMail Enterprise 100.0.7817.31698 (May 27, 2021). But still cannot see this. We did a fresh installation on another machine the feature is visible there but not on the upgraded SmarterMail.

It will also be a good idea to have a separate URL for admin which will enable us to put additional third-party two-actor authentication if required.

Heimir Eidskrem Replied

6/5/2021 at 5:08 PM

I have no idea why Smartermail thought it was a good idea to implement 2FA for users but not administrators.

Strange I think and Im not alone in thinking that.

So you will not find what you are looking for in the latest version.

Ionel Aurelian Rau Replied

6/7/2021 at 5:25 AM

Indeed, the whole 2FA should be overhauled.

Also, do not forget that you cannot enable 2FA for Active Directory imported accounts either, so 2FA right now is really limited in scope. Please also upvote this thread: https://portal.smartertools.com/community/a94026/2-factor-authentication-for-smartermail-with-active-directory-accounts.aspx

Hopefully the whole 2FA is redone to cover all SmarterMail logins, regardless of account types.

Apilion Replied

6/20/2021 at 7:27 AM

Dear Smartermail Team

Yes please, add two-factor authentication for the admin user and let admin username could be change not using default admin but as the customer wanted to be what is it.

Using admin as a username is very easy to guess.

I really need to change this mail server because of there is no option for this and have using it for more than 10 years now :-(

Employee Replied

6/21/2021 at 7:00 AM

Employee Post

Apilion, you can make another sys admin account with whatever username you desire, set that as the primary sys admin account, then remove the built-in admin account.

Employee Replied

6/21/2021 at 2:09 PM

Employee Post

Apilion,

In the current build of SmarterMail you can also change the primary admin username just by editing it the primary admin entry in Settings > Administrators. Once you change the username you will need to log out and log back in with the new username.

Apilion Replied

6/21/2021 at 6:51 PM

Hi Emily and Robert

Thanks for your advice, I could change the username for admin.

Cheers

George Rauscher Replied

8/21/2022 at 8:51 AM

any news about 2FA for the ADMIN- User?

George

George A. RauscherMember of the German Society for Criminology (Deutsche Gesellschaft für Kriminalistik e. V.)Member of "LEVA" Law Enforcement and Emergency Services Video Association, Inc.intelligent piXel GmbHExperts in forensic criminologyEnzianstr. 4a82319 Starnberg0800 - 999 8 99 88 (free*)Website: www.intelligent-pixel.comManaging Director: George A. RauscherAuthorized Representative: Dr. Louise MorgottTax Number: 143 / 150 / 31010HRB 207 679 / Munich Local Court

Mark DeLore Replied

12/19/2022 at 8:53 AM

Any update for AD accounts and Admin?

kevind Replied

12/19/2022 at 11:38 AM

+1 for implementing 2FA with Admin accounts

George Rauscher Replied

12/19/2022 at 12:27 PM

Sorry, I've been paying $1000 a year for over 15 years and you don't find it necessary to program anything here?

Then I'll have to look around for a safe solution. Any kid programs that in a day, sorry.

George

Kyle Kerst Replied

12/19/2022 at 4:12 PM

Employee Post

Hi George! We have added two-factor authentication for system administrators and this is incoming in our next big release of SmarterMail. If you want to try it out before release we do offer a beta at this time as well.

Kyle Kerst IT Coordinator SmarterTools Inc. www.smartertools.com

Back to Community Threads

Please leave this box unchecked

17 Replies

Reply to Thread

Tags

Related Knowledge Base Articles