Admin users should be forced to use MFA
Options
ErikDK
Posts: 2
There are probably still many admins who have not yet enabled MFA on their ZyXEL account. Anyone who knows such username+password can log in to Nebula and start managing the network.
We want better security in Nebula!
ZyXEL, please make MFA mandatory for any user who is a Nebula admin. This implies that admin permissions should be automatically revoked from any user who disables MFA.
Currently, we have to trust that new admin users enable MFA and keep it enabled, but we have no guarantee that they actually do so.
ZyXEL, if you cannot fulfill this requirement in the short term, at least consider creating a report/overview with admins who have/haven't enabled MFA.
Thanks!
1
Categories
- All Categories
- 385 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 74 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 886 Nebula FAQ
- 415 Security FAQ
- 228 Switch FAQ
- 198 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight
