Enable Multi Factor Authentication on a hardware security key device in addition to mobile usage.
There are people who don't have a cell phone modern enough to be able to download an authentication app or handle this process, but who would/might be willing to purchase a hardware security key that the one time passcodes could be sent to instead. I know they exist. We used to have one for our bank's login at a former job of mine. This should be in addition to being able to do this with a phone. Or make it able to point to a desktop/laptop computer application too.
-
Heather MacKenzie
- May 13 2022
Related ideas
Some co-workers / volunteers don't have phones that can be connected to MFA current options. Email is the only way they could connect and use MFA.
Attachments Open full size
We have several "generic" RE logins which are shared amongst our volunteers and interns. Those ids are linked to "generic" email addresses, which I control... the user does not receive email communications via these email addresses. So, any MFA process that relies on the email address assigned to a particular RE login does not work for us. We also have a similar issue with having MFA codes sent to cell phones... not all of our users can "link" their cell phone to the email address they may be using. Our IT staff is looking into MFA options that do not rely exclusively on a linked email address or a linked cell phone.
Attachments Open full size
There are also users who do not have a cell phone and the new MFA roll out will effectively bar them from RE. Email or a desktop application should also be an option for authentication.
Attachments Open full size
Users should be allowed to use their email address for this.
Attachments Open full size
let people have the code sent to their email.
Attachments Open full size
They should also be allowed ro have the extra security code sent to an E-MAIL ADDRESS!!
Attachments Open full size