IBM Security Verify

Shape the future of IBM Security Verify

We invite you to shape the future of IBM, including the product roadmap, by submitting ideas that matter to you the most.

Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Submit a private idea

If you have confidential information or customer data to share with your idea, then - DO NOT submit using the link below, instead - please open a private feature request.

And finally - if its an issue with expected behaviour, a product defect or a support need, open a Support Case

Prevent User from removing last MFA option is User would be required to provide MFA as part of an Access Policy.

Currently, if a user would be required to provide MFA as per a defined Access Policy, the user can still via the Portal remove all of their MFA Options. This in turn will prevent the user from logging back into the Portal since they have removed all of their MFA options which then requires Administrative intervention. Ideally, the system would be able to identify that the user is impacted by one or more MFA policies and would thus prevent the user from removing all of their MFA options (i.e., would require the User to have at least 1 MFA option configured).

  • Guest
  • Jul 5 2019
  • Guest commented
    9 Jul, 2019 02:22am

    We currently force users to perform second factor validation when they attempt to change their second factor enrollments. If the user decided to remove all methods, then applications with access policies requiring 2FA will deny access until the user enrolls a second factor. We do plan to introduce an in-line MFA enrollment workflow during these situations so the users are prompted to enroll again after removing all their methods.The timeline on delivery of inline MFA is scheduled for end of Q3 2019, to early Q4 2019. Thank you so much for your suggestion, we'll link this to our backlog for inline MFA as we believe these are related.

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.