MFA / 2FA at Login Screen
Option to activate MFA / 2FA. As now a UK Government Requirement in Cyber Essentials 2023 for MFA to be on wherever possible in Cloud Apps. Most enterprise systems that take security seriously have this feature now where you can choose to use it.
Therefore if EKM takes security seriously and wants to give the customer the option to further protect their account and massively reduce the risk of unauthorized access this should be deployed as a feature ASAP.
I do not think it should even be a Voted thing, as it's a security issue. Even 1 or 2 votes should get this feature rolled out.
Comments: 7
Oldest
•
Newest
•
Most likes
•
Fewest likes
-
08 Nov, '19
Raf MergedThe dashboard login page is only accessible via password, which makes it vulnerable to password guessing and credential stuffing attacks. EKM should give their customers the ability to sufficiently protect their accounts by impementing multi-factor authentication on the main login page, either via an authenticator app or via text.
Without it a distaster is waiting to happen.. -
17 Feb, '23
Richard MergedTo allow customers to set up 2FA on customer logins that are created on the online shop.
-
07 Mar, '23
Eve Bolan System"Add ability to use 2FA on logins" (suggested by Richard on 2023-02-17), including upvotes (2) and comments (0), was merged into this suggestion.
-
07 Mar, '23
Eve Bolan System"Implement multi-factor authentication" (suggested by Raf on 2019-11-08), including upvotes (5) and comments (0), was merged into this suggestion.
-
13 Sep, '24
Sharon Large MergedThe security of the EKM back office needs improving ASAP. The EKM back office remains logged in indefinitely. Following a recent internal security incident we have no means of ensuring all users are logged out. So if for example an employee leaves, they have access to our back office indefinitely to copy all of our customer details and any other information they wish to take.
As well as logging the back office out regularly we suggest there is 2 factor authentication to ensure our customer details (and our details) are secure. Surely this is a GDPR requirement? -
27 Sep, '24
Eve Bolan System"Security" (suggested by <Hidden> on 2024-09-13), including upvotes (2) and comments (0), was merged into this suggestion.
-
16 May, '25
NickyThis is becoming more and more crucial especially with recent major retailer incidents. Hope this gets implemented soon!