8

Better Security - 2FA Two-facotr Authentication for Klipfolio

Hi! :) 

I suggest/request that Klipfolio add 2FA (two-factor authentication) as standard to their login process directly. This would be a small code (OTP/TOTP) sent or generated and required before login is granted - it's quite common on SaaS nowadays.

Since the whole idea of a service dashboard to to gather a lot of business data services in one location such as analytics/financial & accounting data etc, it's a big weak point for online business security and a huge target or hacking/cyber-security issues. 

You can use SSO (single sign on) if you pay for the more advanced/more-expensive packages but this still leaves regular connected accounts & logins open and insecure by modern best practice standards.

11 comments

  • 3
    Avatar
    Andrew Bollington

    Very much agree.

  • 1
    Avatar
    Raviv Ventura

    Hi guys, with GDPR coming, this becomes a must-have. please prioritize.

  • 0
    Avatar
    Ben Hoskins

    Raviv - I agree this should be a priority - but how do the GDPR regulations affect this? (I'm hoping I have not misunderstood them!) :)

  • 0
    Avatar
    Scott Lawrence

    Thank you for raising your voices in the community and raising the feature request.

    This has been raised as a feature request for discussion with the product team and your names have been associated.

    Cheers,

    Scott.

  • 0
    Avatar
    Will Friedman

    Hello,

    The lack of 2 factor auth will prevent us from considering Klipfolio. Please let us know when this feature becomes available.

    Thanks,

    Will

  • 0
    Avatar
    Niels Lindenthal

    any updates for the support of 2FA?

  • 0
    Avatar
    Tom Becknell

    Agreed.  Any updates?  

  • 0
    Avatar
    David Mennie

    We introduced Sign In with Google to Klipfolio back in February 2019. This has been a very popular feature and 2-Step Verification is supported via Google. We also have a Power-Up which supports single sign-on via SAML 2 or custom (e.g., Okta) which we've had for a few years now. Most SSO providers also support multi-factor authentication. Currently, we are currently testing an IDaaS solution which Klipfolio will provide which we will be rolling out later this year. It will support MFA as well.

  • 0
    Avatar
    Ronald So

    Is this thread still relevant/accurate that the only MFA supported is via Google SSO?  Thank you.

  • 0
    Avatar
    Meggan King

    Hi Ronald, 

    We are actually in the process of setting of MFA for a number of sites. Is there one in particular you are looking for? 

     

    Thank you,

    Meggan

  • 0
    Avatar
    Ronald So

    Hmm, this is the website where I add users to grant access.  https://app.klipfolio.com/users

    I want to be able to force the users to use MFA.  Is this supported?

    Many thanks, Ronald

Please sign in to leave a comment.