Completed

Feature request - 2 factor authentication

In order to protect our data, we would like to have a more advanced way to logon to Insightly. We'd prefer 2 factor authentication, the obligation to create longer and more complex passwords combined with a regular renewal would also help. Is this somethig that is already in the pipeline?

41

Comments

19 comments
  • Hi Sander:

    This isn't in our current pipeline. Thanks for adding this here so others can comment and vote on this :)

    1
    Comment actions Permalink
  • Our company is looking to have the same feature.

    4
    Comment actions Permalink
  • Don't forget to add your vote by clicking the arrow at the top @Shannon :)

    1
    Comment actions Permalink
  • my company is also looking for this feature

    3
    Comment actions Permalink
  • We would be unable to buy insightly without 2 factor authentication our company security policy requires it.on any clod apps that contain customer personal data - it's obvious this is needed when you think about it like that !!

    3
    Comment actions Permalink
  • Hello,

    Our company is also looking for greater security in our CRM system. Has insightly added this feature yet? Thanks.

     

    Matthew

    2
    Comment actions Permalink
  • I can't believe that this isn't part of Insightly already. Please implement this ASAP.

    2
    Comment actions Permalink
  • What CRM system has the best security?

    2
    Comment actions Permalink
  • It's a little bizarre to me that Insightly actually needs "votes" to solve a SECURITY ISSUE.

    Most any other big name CRM on the planet has implemented 2-factor authorization already.

    4
    Comment actions Permalink
  • My company is interested in this feature.

    Additionally, we want users who have two-factor authentication on their email (Office 365) accounts to be able to send emails out of Insightly. Currently, we get a message that their email accounts cannot be validated and so they can't send emails via Insightly.

    2
    Comment actions Permalink
  • Of course, 2 factor authentication should be a given. We shouldn't have to vote to keep our data safe in a CRM company! :) Or a password that needs to be changed every 30 or 60 days, that seems pretty standard nowadays.

    1
    Comment actions Permalink
  • A Strong vote for this feature, very important for us! Really unbelievable that this is not yet there!!!

    1
    Comment actions Permalink
  • When will Insightly support 2 factor authentication with email in Office 365 so that we will be able to use the mass email feature?  Our company is experiencing the same problem that  noted above in April 2017.

    Per the following notice issued May 31, 2017 by the Department of Homeland Security, the FBI has released their recommendation that all businesses use multi-factor identification as a baseline digital defense to corporate email. (See notice copied below.)

    I'm assuming Insightly will need to adapt to the market and need to advise my management of your strategy and timeline. It has been problematic for us not to be able to fully use the email features since our Cybersecurity firm employed 2 factor identification a few months ago and we would like to continue using your product and service rather than being forced to find an alternative measure. Hoping for some good news here!

    Original release date: May 31, 2017 - The Federal Bureau of Investigation (FBI) has released an article on Building a Digital Defense with an Email Fortress. FBI warns that scammers commonly target business email accounts with phishing and social engineering schemes. Strategies for preventing email compromises include avoiding the use of free web-based email accounts; using multi-factor authentication; and updating firewalls, antivirus programs, and spam filters.

    US-CERT encourages users and administrators to review the FBI article for more information and refer to US-CERT Tips on Using Caution with Email Attachments and Avoiding Social Engineering and Phishing Attacks.

    3
    Comment actions Permalink
  • Hi, 

    While I love Insightly, I will have to change to another option if multi-factor authentication isn't in the pipeline.  

    Regardless of how many people request this, you put the critical data of all your customers in peril by failing to offer and promote multi-factor. 

    I was speaking with a friend the other day who leads the FBI Cyber Security Task Force in my area.  I mentioned that I love Insighlty, though they don't offer multi-factor.  He asked how big of an issue it would be for me to lose ALL of my data.  He said that multi-factor authentication is a requirement to protect data.

    1
    Comment actions Permalink
  • Thank you for the update Ron.  It will be a pain to move, though I can't risk data loss.  

    Multi-factor isn't that hard to implement.  I sell tech and watch companies do it often.

    1
    Comment actions Permalink
  • Thousands of contacts - need to have this implemented to enhance security. And avoid embarrassment.

    1
    Comment actions Permalink
  • Over 2 years ago this feature request was filed and still no Insightly statement about this.

    1
    Comment actions Permalink
  • This look like the most prominent thread about MFA.

    We need MFA support for Office 365 (Exchange) in the email and calendar settings. Currently only works with app passwords which is a stop gap but fundamentally insecure. 

    Also need to be able to enforce the use of Office 365 as the main login method, not just as a convenience feature but a requirement. The use of Azure AD as the sole authentication source ensures that we are in control of our and our customers data. This of course would allow us to use MFA at the login screen. 

    We need this capability in both the web and mobile applications.

    Thank you

    1
    Comment actions Permalink
  • i see that this issue has been ongoing since 2015 and Insightly had not responded with development/roadmap updates in 4 YEARS. When will you respond to your customers about support of 2 factor authentication??? If not, you should advise your customers that you will not be supporting this standard security feature. 

    0
    Comment actions Permalink

Please sign in to leave a comment.