We migrated ticketing systems!

If you would like to check on the status of a ticket, please visit huntress.zendesk.com.

For the time being, our documentation will stay the same, we will make a hard cutover when all the documentation is ready. The Huntress Support site will continue to be support.huntress.io, it will just come with a new look and feel.

Click here to check the status of a ticket



Top

Enforcing multi-factor authentication

Please note: The current 2FA/MFA methods support by Huntress are DUO authentication and TOTP (such as Google, Microsoft, LastPass authenticators). Our Team is working on bringing SAML/SSO very soon, please see the feature status here: https://feedback.huntress.com/integrations/p/samlsso

Why enforce Multi-Factor Authentication

Two-factor authentication provides an additional layer of security to your account. Not only will an attacker need to know your password (hopefully they don't know it), but they will also need to complete the second-factor check. Traditionally the second factor requires "something you have" to satisfy the check. This could be many things from a mobile phone to a hardware token. Without this physical device, even an attacker who has your password won't be able to access your account.

Setup Two-Factor Methods

*See https://support.huntress.io/article/78-two-factor-authentication to set up 2FA

How to enforce Two-Factor Authentication

Two-Factor Authentication can only be enabled on a per-account basis

1. On the Account page go to Settings

2. On the Settings page go to Account Security Settings and select Yes

3. Save configuration change on the bottom of the Settings page

*All accounts will be required to have Two-Factor Authentication enabled at the beginning of August


Once 2FA is enforced, users without it will be prompted to set up a TOTP method:

*All accounts will be required to have Two-Factor Authentication enabled at the beginning of August