Dear All,
I have a question on enabling 2FA, under the meraki dahboard, i have 10 accounts there, and i have enabled my own login with 2FA, just wonder if i can enable 2FA with the rest of the accounts under my login in dashboard ? thanks
Keith
Solved! Go to solution.
You can enforce MFA for all administrators in the org under Organization -> Settings -> Two-Factor Authentication. There's a checkbox to force users to setup Two-Factor
You can enforce MFA for all administrators in the org under Organization -> Settings -> Two-Factor Authentication. There's a checkbox to force users to setup Two-Factor
i found this check box, if i check this option, the rest of the account will be enforced to use 2fa ? and they need to ready Duo Mobile App in order to access to the dashboard am i correct ?
Hi Keith_Li,
If enabled, all accounts under that Org will be forced to enable and set up 2FA. If DUO is your preferred MFA app it can be used but you are not limited to it.
If they don't have an MFA setup, the system will initially use email-based MFA (they will get an emailed code to use to log in every time).
They will need to go into their own profiles and manually setup MFA with their favourite MFA app.
I could be wrong with this, but the 2FA settings applied is for the accounts assigned permissions, but not SAML linked accounts, but depending on your external identity source, you should be able to apply MFA to the Meraki application/Enterprise App (Azure terminology) within that identity source.
Specifically, this setting is only for Meraki-hosted Administrator accounts.
Correct, SAML accounts will use their own separate system.