Ability to require certain two-factor authentication method for all users
Currently, we are able to require 2FA for all users. However, we do not have the ability to set which 2FA method would be required for other users. For example, the ability to only allow users to set up 2FA through Microsoft Authenticator.
It would be great to require all my users to just use Google Login.
That way, when e.g. an employee leaves the company and loses access to the Google Account, they immediately lose access to Hubspot as well. (This already comes in handy with Services we use).
I'm the Product Manager covering the login experience.
@KPruett - We are evaluating this option right now as we would like to consider giving control to admins to enforce the 2FA type as SMS 2FA, while widely used, is a more risky version of 2FA. We would provide the ability to allow admins to enforce users to mandate a Authenticator App vs using SMS 2FA
@AReimann - We actually now have this feature in Beta! It's called Allowed Login Methods. You'll see it in your product updates section. Let me know if you have any questions on it!