cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Community
English
Announcements
What’s new: end-to-end encryption, Replay and Dash updates. Find out more about these updates, new features and more here.

Security and Permissions

Start a discussion in the Dropbox Community forum to get help with your account security and permissions. Find support from Community members.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MFA can be switched off in fact

Labels:

MFA can be switched off in fact

ITCorner
New member | Level 2
a month ago

If you will set up MFA required for all, users will set up their phone numbers as second stage of login - for code via sms.

During login with MFA, users on screen for code from sms, can mark checkbox 'trust this machine' (or similar meaning).

 

From that time user will be not asked anymore about sms code - that wrong because it's against of admin settings for MFA. User CAN switch it off in fact.

User can do that on some computer which is not owning to him etc. .

From Security perspective it should be corrected immediately - minimum: "trusting" checkbox  on screen for sms code, should NOT be displayed with MFA marked by admin as mandatory. Try to imagine that first user will save password and login on such computer and later turn on (mark) "trust this machine" and boom-> big problems. 

Labels:
  • 0 Likes
  • 1 Replies
  • 115 Views
0 Likes
1 Reply 1

Walter
Dropbox Staff
a month ago

HI there @ITCorner - thanks for taking the time to share your thoughts on this with us and happy Friday!

 

Your feedback has been noted in our system and you can let us know if you have anything else to add.

 

Thanks so much!

Walter
Community Moderator @ Dropbox
dropbox.com/support


Heart Did this post help you? If so, give it a Like below to let us know.
:arrows_counterclockwise: Need help with something else? Ask me a question!
:pushpin: Find Tips & Tricks Discover more ways to use Dropbox here!
:arrows_counterclockwise: Interested in Community Groups? Click here to join

0 Likes
Need more support?
Who's talking

Top contributors to this post

  • User avatar
    Walter Dropbox Staff
What do Dropbox user levels mean?