Ideas Portal - BoardPro
Currently, if someone obtains a Boardpro password that person has full access/download information that this password/access allows.
Using two independent mechanisms to verify the identity of a user improves security dramatically.
E.g a password and text of a security code, smart card or a password and fingerprint scan.
Text a Security Code (after users log in with a password, a code is texted to their cellphone. Copying that security code from the phone into the login process provides the second authentication method.)
0
Shipped
Thanks for your input. MFA is now available with 2 verification methods for users to choose from - Authenticator apps or email OTP/ codes. Please visit https://help.boardpro.io/en/articles/6638271-enabling-multi-factor-authentication-mfa for guidance on getting started with MFA on BoardPro.
Some of you have also asked for org wide enforcement. This will be evaluated in the coming months, and your feedback will be appreciated on BP-I-551.
Now that this has been enabled for individuals, can you please make sure there is the ability to enforce it for ALL users, instead of relying on individuals to enable it themselves.
Regrettably, we have had to move part of our business away from BoardPro because it lacks a MFA capability
It makes sense as this is one of the last pieces of software I use that doesn't do it.
We are a current BoardPro user. It is one of the few products we use that does not have MFA. Cybersecurity is one of our top-ranked risks, and it is concerning to us that BoardPro does not require MFA when we are using it to store sensitive information. We highly recommend to BoardPro that they install MFA for logins.
We are keen to move to BoardPro, however we can't do so without having MFA enabled. We can't risk some of our most sensitive data being exposed via a simple phishing email or compromised 3rd party site that holds a user's password and email address.
It would be great to get an eta on when it will be implemented. That is, MFA is a basic must for cloud services now, so it is just a matter of time until all services enforce MFA, let alone offer it.
We are an IT service provider MSP, and one of our clients and in particular, their cyber insurance provider, is insisting that any access to devices and applications require MFA. I would suggest you implement this asap as they are likley to switch to another provider. If Boardpro supports SAML then we can use an MFA app. Thanks
We would like 2 factor authentication set up. We believe this is the way of the future to protect our data. We have Watchguard activated for all of our devices and now Xero has also started this process.
Agree a must in today's world where cyber crime is a huge industry.
This would be very useful - and a must in today's world!!