2FA enforced, but still required even after using Google Sign-in

xyzulu · November 11, 2022

Any ideas about adjusting this behaviour?
Currently with 2FA enabled, and a Google account linked the customer still needs to provide the 2FA code after login (using Google account). Seems a little over the top?

Damo · November 11, 2022

That would be expected wouldn't it? Logging in via gmail is really no different to entering the site login details.

Once initially authenticated the second authentication method would kick in.

leemahoney3 · November 11, 2022

With 2FA I'm guessing the login process is done in two steps. I'd imagine the Google login is part of the first step of logging in, instead of entering the email and password. 2FA would be part of the second step.

xyzulu · November 11, 2022

You all make good points

leemahoney3 · November 11, 2022

I guess the issue is that your Google account may or may not have 2FA enabled, if not enabled then the WHMCS account could be compromised if the Google account was breached.

Sign In

2FA enforced, but still required even after using Google Sign-in

Recommended Posts

xyzulu 35

Share this post

Link to post

Share on other sites

Damo 27

Share this post

Link to post

Share on other sites

leemahoney3 33

Share this post

Link to post

Share on other sites

xyzulu 35

Share this post

Link to post

Share on other sites

leemahoney3 33

Share this post

Link to post

Share on other sites

Join the conversation

Recently Browsing 0 members

Browse

Latest Activity

Blog

Technical Support

Important Information