Hide the dialog box when 2-Factor authentication回答済み
We would like to use 2 factor authentication for Agenst every time.
However the dialog box that "Don't ask again on this computer for 30 days" appear on current Login page of 2FA.
We would like to make the dialog box hide it and enable 2 factor authentication every time.
We would appreciate it if you could consider adding this request to your future development plans.
Hi! Thanks for this piece of feedback. We currently don't have any plans to remove this checkbox but it's an interesting idea for sure. I've added this feedback to our internal tool for tracking.
It is interesting that Zendesk think of IT security as simply a 'feature' and not a mandatory component. Users will never upvote IT security in comparison to bells n whistles features.... right now there is extreme risk.
It is not a great answer though, Zendesk. Sincerely the 2FA implementation is flawed. 2FA in a business context is meant to be implemented as a scheme that permits administrators to make the use of this mandatory.
The current implementation does leave Zendesk open to potential legal action I would believe should Personally Identifying (PI) or sensitive data be stolen via a breach.
This would be straight-forward to remediate by implementing the common design that permits admin to enforce 2FA.
Why will Zendesk not consider and take action on this yourselves?
It would be a relatively simple change to lock down the user screens to no longer permit the 30 day 'trust'.
Please note that as a very small company we do not have intention or capability to implement SSO. However we do have copies of PI and possibly sensitive information within our tickets and we do take information security seriously and would like to see Zendesk make an uplift here to properly secure your 2FA design - for everyone.
I'd like to see Zendesk take the lead here.