Protecting the safety of your users is important. Available to Domain Administrators, the new webmail allows you to enforce 2FA for your users. This must be enabled at the Domain level and will apply to all users. Once enabled, the application will provide a set of generated strong passwords to be used to connect external applications.
Enforcing two factor authentication
To get started select More from the top level navigation. From the More menu select Domain Settings. Then, navigate to the General section on the left navigation. Under a heading titled User/Alias toggle “Force two-factor authentication” to enable.
Upon first login
Now for every user of the domain, upon login of the webmail they will be prompted to setup their authenticator device. It is encouraged that users enter a recovery email in case they are locked out and need to recover their account.
Scan and Test
On the next prompt for users they will setup their authentication app. To complete add the code to your app, then enter the 6 digit number output by the app.
Application passwords
After confirming that your authenticator app is successful, you will be presented with the next screen. This display contains the application passwords for external applications. To connect this email account to an external application such as Outlook or Thunderbird, you will need to use the provided application passwords.
Reset a Users Two-Factor
Available for Domain Administrators is the ability to reset a Users Two-Factor setup. To perform the reset select a User from the Accounts menu.
When viewing the Users settings select the triple dots menu for more. Click on Reset Two-Factor to clear the users 2FA setup.
Confirm the reset
You will have to confirm the reset before it is applied. When the user logs in again they will be prompted to setup 2FA again.