Question
What changes have been made Multi-Factor Authentication
(MFA) for Admins in Admin Console?
Applies To
Answer
As part of our ongoing efforts to enhance account security,
we are implementing Multi-Factor Authentication to keep accounts up to date
with the latest global security standards. MFA is mandatory for all admins
since July 2023.
When this was first enabled, all admins were prompted to set
up their preferred authentication method when they next logged in to
login.8x8.com. This change was automatic and no action was required from
customers. This is a gradual rollout, so not all admins will be updated at the
same time.
If we already use third party authentication, does this
affect us?
These changes only impact admins who currently use 8x8
Authentication to access their 8x8 services. Users who log in using third-party
identity providers, such as Microsoft Azure and Okta, will not be affected.
If an admin is logging in with 8x8 credentials, they will be
prompted for MFA. If the admin selects Login with Organization,
they will be redirected to their third-party identity provider login page and
should not be prompted for 8x8 MFA. However, depending on your organization's
login policies, the third-party identity provider login page may ask for
MFA.
Can I enable this only for admins?
There is no option to enable this just for admins.
Can I enable this for individual non-admin users?
MFA can only be enabled for all users. There is no option to
enable this for individual users.
What classifies a user as an admin?
The roles in Admin Console that will define the user as
admin and set it as such in multiple systems are:
The roles My8x8 Admin (default) and VCC Admin (default) will
not require the user to have Multi-Factor Authentication.
Can I use the same phone number and email address for
multiple users?
It is possible to have the same phone number and email
address configured to multiple different logins to receive Multi-Factor
Authentication codes.
Additional Information