2FA for members
under review
Naitik Mehta
1) The problem → I'd like to enable 2-factor-authentication for my customers.
2) Why is this important → This is also a topic for me as I work with critical customer bank data.
3) What's your plan B →
4) Possible solutions we could build for you →
After a customer has signed up we'd like to force them to activate 2-factor authentication with their cell phone.
Integration with Twilio since they offer this solution too, which could be combined with memberstack to make the customer data more secure.
d
daniel hwang
> 4) Possible solutions we could build for you →
For us, 2FA directly for embedded users isn't strictly needed. If we could enforce all members to authenticate through Google Authentication then we can enforce 2FA from Google Workspace (instead of Memberstack).
S
Stuart Bowler
In my case we are inreasingly being asked to implement 2FA for member accounts on client projects as a core requirement due to the both perceived and actual step change in account security. We are seeing awareness of 2FA/MFA amongst clients grow.
Naitik Mehta
Stuart Bowler: Thanks for sharing! Definitely noted as we're planning the future roadmap. 🙏
T
Teresa K
Requesting adding 2FA to embedded members login for additional security.
Naitik Mehta
under review
We'd love to hear more about the use-cases and importance of this feature for your business. Keep the feedback coming, we'll keep a close eye on this for after the 2.0 launch.
Sergio Kopelev
Naitik Mehta: in modern cyber security threat landscape 2FA is almost a basic requirement, not unlike cars having a door clicker to unlock. What seemed like an option just a few years ago is basic functionality today. 2FA is being integrated into everything from Banking, email or even World of Warcraft.
The use case can be pulled from pretty much every news article about a cyber breach or user account compromise, most of which could’ve been prevented with 2FA integrated into the user sign on experience. So an option for enforced 2FA (where the user doesn’t have a choice to not use it) is key for modern app security.
Any idea of when you are planning to implement 2FA functionality into memberstack and if you currently have subscribers who are able to use an external 2FA tool with memberstack? Curious what works for other people.