Multi-factor login authentication as a security option

It would be nice to be able to have a multi-factor login authentication as a security option. We have users who work in DocuWare while they are on the road and it would be nice to toggle this feature on/off per user as an extra layer of security.

184 votes

Anonymous shared this idea · Feb 27, 2018 · Report… · Admin →

Added to Ideas Backlog ·

AdminDocuWare Product Management (Product Owner, DocuWare) responded · Jun 18, 2020

Of course the security of our users is important to us.
As you have noticed, this idea still has the same status, but was not declined. That means we evaluate it regularly.

One reason why we have decided not to add this security feature yet is that we will first change the authentication flow.
As a first step, we introduced the Identity Service in the DocuWare Cloud with Version 7.3, which allows integration with Azure AD and the use of MFA there.
The next step is to force users to use SSO only. However, to ensure this, we still need to make some changes in our authentication flow.
We are also planning to bring these functions to DocuWare On-Premises.
Afterwards we will evaluate extending the login with DocuWare credentials with MFA/2FA.

We are constantly striving to improve our products and appreciate your feedback and contribution.

Show previous admin responses (1)

An error occurred while saving the comment

Damian commented · January 12, 2023 3:29 PM · Report

Companies are requesting 2FA / MFA to comply with their security policies. This is a requirement for most cloud solutions. SSO is not seen as a replacement, and not everyone uses Microsoft for identity management. Is there any update on when this will be available to support customers with their security requirements?

Submitting...
Pierre Bellevue commented · November 14, 2022 5:00 PM · Report

As threats to password security have increased in recent years, 2FA is one of the most powerful method for increasing the assurance of authentication for consumer and enterprise web and mobile applications. Please don't take too long to implement the 2FA, Its really important for us as consumer.

Submitting...
Sigfredo Diaz commented · November 14, 2022 3:26 PM · Report

2FA/MFA is a must for all SaaS products. It doesn't make sense that this is not critical in DocuWare's eyes. It should already be in development.

Submitting...
Jacques Paquin commented · October 24, 2022 5:23 PM · Report

It's now the end of 2022 and our insurance for cyber requires turning on MFA where we have PII stored. We're not a Microsoft shop. So where does this leave us for options?

Submitting...
Hans Werner Hennes commented · June 30, 2021 4:11 PM · Report

When we became client, 2FA was promised this year. Nothing happened yet.

We are working with Apple , not Microsoft and therefor are very concerned about the security for our data.

Don't understand why this is so difficult. Even Joomla and other content management systems have 2FA possibilities.

Submitting...
Anonymous commented · December 4, 2020 9:29 PM · Report

I was considering DocuWare but with no MFA I may have to look elsewhere.

Submitting...
Gallo commented · November 27, 2020 8:56 AM · Report

This is required by our data security auditor and is definitely stare of the art nowadays! plese provide a date until 2FA is possible finally. Many thanks!

Submitting...
Anonymous commented · November 25, 2020 12:31 PM · Report

2FA is strongly needed!

Submitting...
Anonymous commented · April 2, 2020 8:43 PM · Report

Hi

What is the status in MFA. Is it un the roadmap?

Submitting...
Mark S McMearty commented · July 24, 2019 9:50 PM · Report

This is needed, it looks like it will become an audit issue in a year or so

Submitting...
Anonymous commented · June 3, 2019 1:23 PM · Report

I have to admit some surprise that Docuware haven’t aleady implemented this. It’s a ‘must have’ when working with personal data.

Submitting...
Kyocera commented · May 29, 2019 4:48 PM · Report

It's not in the 7.1 release. Any update for implementing 2FA ?

Submitting...
Anonymous commented · April 23, 2019 3:11 PM · Report

Lack of MFA support is a really big issue with the current data protection climate. Please sort it out!

Submitting...
Henrique Goncalves commented · January 15, 2019 9:33 AM · Report

Any updates for implementation on 2FA/MFA?

Submitting...
Nate Howland commented · October 31, 2018 7:51 PM · Report

Many companies that assist with GDPR compliance list two-factor authentication for web apps as a "must have" best practice.

Submitting...
Kim Anthony LUna commented · June 11, 2018 9:15 AM · Report

I agree. Clients have been asking about 2 factor authentication for increased security.

Submitting...
Simon H. Hellmann – Toshiba TGIS GmbH | IT-Consultant commented · May 30, 2018 11:43 AM · Report

2FA seems like a must to me, especially with the Cloud environment.

Submitting...
Anonymous commented · April 11, 2018 1:30 PM · Report

Not only nice, also important regarding GDPR!

Submitting...
Nigel commented · March 8, 2018 10:11 AM · Report

Please implement this solution so that customers and admins are more secure. Without it, and without a proper password policy, people can login infinitely with the user/admin credentials. This is unsecure.

With TOTP/OTP/2FA solution people need the username, password and temporary code to login. This is way more secure.

Submitting...
Anonymous commented · February 26, 2018 11:59 PM · Report

It would be nice to be able to have a multi-factor login authentication as a security option. We have users who work in DocuWare while they are on the road and it would be nice to toggle this feature on/off per user as an extra layer of security.

Submitting...