Enhancing Security with Two-Factor Authentication (2FA) Enforcement in Nebula
Zyxel Employee
Security is a top priority for any organization managing network infrastructure. To bolster protection against unauthorized access, Nebula Control Center (NCC) offers a feature called Organization Access with Two-Factor Authentication (2FA) Enforcement. This feature ensures that every administrator accessing a Nebula organization must verify their identity using 2FA, adding an extra layer of security.
Why Enable 2FA Enforcement?
Enforcing 2FA at the organization level serves as a safeguard against potential security breaches. If an administrator’s credentials are compromised, attackers still won’t be able to access the organization unless they can also bypass the 2FA mechanism.
How to Enable 2FA Enforcement in Nebula
Enabling 2FA enforcement in Nebula Control Center (NCC) is a straightforward process:
- Log in to Nebula Control Center (NCC)
- Ensure you use email-based login (Google or Apple Sign-in is not supported for 2FA enforcement).
- Go to Organization Settings
- Navigate to Organization > Organization Settings.
- Enable 2FA Enforcement
- Locate the option "Force admins to set up and use Two-Factor Authentication."
- Once enabled, all administrators will be required to authenticate with an additional verification code via an authenticator app.
- Set Up 2FA for Your Account
- Go to the account settings in the upper right corner of the NCC interface.
- Select Manage Account > Two-Factor Authentication.
- Scan the provided QR code using Google Authenticator or any compatible app.
Important Notes About 2FA Enforcement
Before enabling 2FA, there are a few key points to consider:
1. Email-Based Login is Required
- 2FA enforcement only applies to accounts using email-based login.
- Google and Apple sign-in methods are NOT compatible with NCC’s 2FA enforcement in this version.
2. Admins Must Activate 2FA Before Enabling Enforcement
- If an administrator has not yet activated 2FA, an error message will appear when attempting to enable enforcement.
- The administrator must log in using 2FA first before they can enable the feature.
3. Impact on Organization Access
- Once enforced, any administrator without 2FA enabled will be locked out until they activate it.
- A warning message “Organization Access Denied” will appear if an admin tries to access the organization without 2FA.
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 102 Nebula Status and Incidents
- 5.8K Security
- 305 USG FLEX H Series
- 283 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 255 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.7K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 77 Security Highlight