Enforcing MFA for a specific OU

From Studentnet Wiki
Jump to navigation Jump to search

Enforcing MFA for specific OU

In some cases MFA is only required for some specific users like Staff rather than students. Being able to force only Staff to enable MFA becomes very helpful This setting change can force certain organisational units to use MFA while all other users do not needs to use MFA

How this works is that once the setting is enabled, any user who does not have MFA enabled, will not be allowed to access any service until MFA is turned on.
When users without MFA enabled try to access any service, they will be shown a screen similar to this
Enforced MFA.PNG
Clicking on Click here to enable Mutlifactor Authentication will take users to the CloudworkID Page where they can enabled MFA.
From here users can enable MFA via App with QR Code, App with Setup Key or, SMS

Instructions for enabling MFA for a specific OU

  1. In the Cloudword Dashboard, side bar>Settings>CloudworkID Settings
    Menu.png
  2. On the left side of page, select the OU wish to enforce MFA for.
  3. Once that is done, under Features, click Override Settings>Confirm>under Users must enable MFA, select Yes.
  4. Click Submit
Retrieved from "https://wiki.studentnet.net/index.php?title=Enforcing_MFA_for_a_specific_OU&oldid=2053"