Back to Community Threads
3
Allow requiring 2FA authentication for specific users
Idea shared by Pusparaj Raut - 3/11/2025 at 11:59 PM
Proposed
Hi,
We would like to request the ability for domain administrators to enable and manage two-factor authentication (2FA) for users within their domain. Currently, users can enable 2FA themselves, but some of our customers require that domain administrators be able to enforce this security measure for compliance and policy reasons. We would appreciate the ability to enable or disable 2FA for specific users or enforce it across all users, with a reporting feature to track who has 2FA enabled. Additionally, the option for domain administrators to reset 2FA settings for users who lose access to their authentication method would be beneficial.
This feature would greatly improve security and assist with meeting compliance requirements for many of our customers.

5 Replies

Reply to Thread
0
Andrew Barker Replied
3/12/2025 at 7:04 AM
Employee Post
Domain administrators can force 2FA for all users. To do so, enable "Force two-step authentication" on the User Options card of the General domain settings page. Once this setting is enabled, all users will be required to configure a 2FA method the next time they log into webmail.

On the Accounts page, users who have configured 2FA are indicated with an icon in the account field, and the Password Age tab of the Password Requirements page also has a column to indicate which users have 2FA configured.

Domain administrators can also reset a users 2FA configuration. When accessing the user's settings from the Accounts page, go to the Actions (triple dot) menu and select "Reset Two-Step". This will clear the user's current 2FA configuration, allowing them to log in an reconfigure it.
Andrew Barker Software Developer SmarterTools Inc. www.smartertools.com
0
Hi Andrew,
Yes, domain admin can  enable 2FA for all users, but we are looking if there is an options for specific users to  enable 2FA . 
0
Andrew Barker Replied
3/17/2025 at 7:15 AM
Employee Post
Are you looking for a way to require 2FA for specific users? Currently, any SmarterMail user can configure 2FA for their own account, and domain administrators have the option to require 2FA for all users in their domain.
Andrew Barker Software Developer SmarterTools Inc. www.smartertools.com
0
Hi,
But we are looking if domain admin  have the options to enable for specific users only instead of all users on the domain.
1
Andrew Barker Replied
3/19/2025 at 7:14 AM
Employee Post
Currently, SmarterMail does not support requiring 2FA for specific users. I have changed this thread to an Idea and updated the subject to get feedback from the community.
Andrew Barker Software Developer SmarterTools Inc. www.smartertools.com
Back to Community Threads

Reply to Thread

Enter the verification text

Related Knowledge Base Articles

Set up Autodiscover for SmarterMailSmarterMail > Installation and Configuration
Windows Mail and SmarterMailSmarterMail > Desktop and Mobile Synchronization
Deploying Rspamd For Use With SmarterMailSmarterMail > Server Configuration and Management
Configure a Smarthost Gateway in SmarterMailSmarterMail > Server Configuration and Management
Manually Securing SmarterMail Using Let's Encrypt and Certify the WebSmarterMail > Installation and Configuration