New Topic

WHMCS Feature Requests Topic Idea Client Area

Two-Factor Authentication for Sub-Account

Jacob Roe-Bauer shared this idea 4 years ago

Under Consideration

Enable two-factor authentication for client sub-accounts.

I like this idea 0

Comments (19)

sidgrafix ● 3 years ago

This is needed!!! Especially if an account holder allows for sub-accounts with full control - the sub account has their own email login and therefore should also have the option to use two step auth with time based tokens (and should be mandatory - to use time based tokens on sub-account if the primary account holder activated two-step authentication)

Reply URL

Matt Cooper ● 3 years ago

This definitely needs implementing asap - exactly for the reasons previously mentioned.

Reply URL

Rusdi ● 1 year ago

Yeah, actually two-factor is useless when some one can use the sub-account to login.

Reply URL

Cliff Mitchell ● 1 year ago

This is a serious security risk that needs to be addressed urgently. We must all continuously improve our security protections. This change should be implemented urgently and I would urge you to escalate it to top priority for immediate action.

Reply URL

Daniel K ● 1 year ago

Yes, this is definitely needed.

Reply URL

arussell ● 1 year ago

If you make 2FA mandatory for customers, sub-accounts can't login at all as they can't set up 2FA but are trapped in redirects to the 2FA page. This should be considered a bug not a feature request. Fix this please, WHMCS.

Reply URL

robby hicks ● 1 year ago

This is crazy there is a bug that redirects to 2FA page if you are a contact! Must FIX!!

Reply URL

Alex Gough ● 1 year ago

Is there any update on this? It kind of defeats the purpose of 2FA if the sub-accounts can't have it enabled. Kind of like Putting bolts on the door but leaving your windows open.

Reply URL

Telforce ● 1 year ago

I don't understand why this was left out in the first place. It makes no sense.

Reply URL

seanw ● 10 months ago

This is a big security issue. Otherwise, why bother offering 2FA at all?

Reply URL

V D ● 9 months ago

How is this not implemented already?

Reply URL

Nicholas Taylor ● 8 months ago

It's a little crazy this was let out in the first place.

Reply URL

Swehoster ● 5 months ago

Yes, last I heard this is not possible. I see no reason to use this before all users are included.

Reply URL

Mark ● 5 months ago

Why is this not a thing yet?

Reply URL

Mark ● 4 months ago

Please inplement this already

Reply URL

apignard ● 4 months ago

crazy it's not already done, whmcs is really understand account security ?!!!!

Reply URL

Show All

Jacob Colton ● 3 months ago

Any update on this?

Reply URL

Ryan ● 2 months ago

It's def not in v7.7.1 which is super disappointing.

Please WHMCS, get this added soon, security is such a huge concern and we require 2 factor...

Reply URL

Ryan Bishop ● 1 week ago

SSIs this not done yet?

Reply URL