ssakharova
commented
1 month ago Hello @dm9de,
I passed all the provided information to our developers and created an internal prod ticket for them to decide on its necessity and possible implementation in future versions of the ThingsBoard. Please follow our Release Notes to see all new additions to the platform in the subsequent releases.
dm9de
Is your feature request related to a problem? Please describe. Currently, it is possible to enable two-factor authentication, but it is not possible to require it. That is: it is left up to a user's discretion whether or not they would like to use 2FA. This isn't sufficient for many organisations, where mandataory 2FA is a requirement of their security policy.
Describe the solution you'd like It should be possible for tenant administrators (and potentially customer administrators for PE) to force the use of 2FA for all users of that tenant/customer.
Describe alternatives you've considered One possible alternative is to for such organisations to use Thingsboard's OAuth2.0 support to integrate a third-party authentication provider with mandatory 2FA. However, this adds substantial complexity.
Additional context A similar request has been raised before, however that issue was been closed as 'completed', citing a currently unmerged pull request from November 2022.