Capture authenticator app name during 2FA Enrollment to remind user at login
Users forget which authenticator app they selected or to look at their app instead of receiving a push notification (as they have gotten used to from systems) Is it possible to capture which app they're using during enrollment (even if they type in a hint) so that the system can remind them at login.
A good 20% of our uses forget as they don't use our system on a daily basis. We have to reset and re-enroll their 2FA, which defeats the purpose.
-
Hello Jason,
I believe that the 2FA method in question would have more of an ability to display which auth app it is reaching out to for a reply than Cerberus would unfortunately. Using DUO as an example, Cerberus integrates with duo and displays their universal prompt, that prompt is where I would expect to see an app that it is trying to send a code down to, since Cerberus is just displaying the prompt, then authenticating the login afterwards, I do not believe Cerberus itself can capture that app name in that way.
0 -
Duo integration is a whole other creature. That is a push notification. However, the "TOTP-compliant authenticator app" 2FA which Cerberus supports means users have to option to pick Google authenticator, Microsoft authenticator, duo mobile, apple's password app in iOS, etc.) The problem is users forget which app they have enrolled with. It's a de facto point of failure.
0 -
Thanks for the clarification Jason, I'll get do some digging to see if this is something that we can accommodate through Cerberus itself. If it's a possibility, I'll reach back out for some additional details before I get this on over to our Product team.
0 -
Hello Jason,
I was able to have a conversation with our development team around your request, and unfortunately it would not be something that Cerberus can accomplish. They let me know most of those settings come from different admin portals relating to the apps, and is not something that Cerberus bridge at this time. I do apologize for inconvenience, but do let me know if there's anything else I can do to help out.
0
Please sign in to leave a comment.
Comments
4 comments