Sentry: Ability to require 2FA

Created on 27 Nov 2016  路  9Comments  路  Source: getsentry/sentry

We have an on-peremise installation of Sentry, and I'd like to require 2FA on all users.

I can't see that there's an option for this in the web panel and can't say I spotted anything in the documentation either.

What would be nice would be a similar approach to what Gitlab has, where you can require 2FA and also set a grace period so that when implementing it you can give a short period to allow users to get their 2fa poison of choice (eg. a ubi-key).

Auth Security
Source
picture thorerik
👍27

Most helpful comment

@ys It's something that's not too hard, but it's also hard to prioritize given a lot of companies use an SSO service that already mandates 2FA (e.g. Google). I'm not sure if/when we'll prioritize it. I imagine at some point someone will just want to fix it with some spare time, but we still see it as a nice-to-have.

picture dcramer on 8 Jun 2017
👍3

All 9 comments

Yeah, this is definitely not able to be done yet and is on our radar for sure.

mattrobenolt picture mattrobenolt on 27 Nov 2016

Hello there. We love the ability to use 2FA. Making this a requirement for members of a team would improve security even more.

+1 for this request

akleiber picture akleiber on 20 Mar 2017

Hi there, the ability to enforce 2FA is a Mandatory Feature for us.

+1 馃憤

ghost picture ghost on 21 Mar 2017
👍2

Due to the recent work on how "requires SSO" was resolved (enforcing you login via SSO per-org), this should be a lot easier now.

dcramer picture dcramer on 24 Apr 2017

馃憤

sim1 picture sim1 on 29 May 2017
👎2

@dcramer do you have any idea when that could be shipped?

ys picture ys on 8 Jun 2017

@ys It's something that's not too hard, but it's also hard to prioritize given a lot of companies use an SSO service that already mandates 2FA (e.g. Google). I'm not sure if/when we'll prioritize it. I imagine at some point someone will just want to fix it with some spare time, but we still see it as a nice-to-have.

dcramer picture dcramer on 8 Jun 2017
👍3

@maheskett Is this live for users yet?

billyvg picture billyvg on 3 Oct 2019

Dang, yeah this has been live for a while.
Docs are here: https://docs.sentry.io/accounts/require-2fa/

maheskett picture maheskett on 3 Oct 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

dkarlovi picture dkarlovi  路  4Comments
chavlin picture chavlin  路  3Comments
dmnd picture dmnd  路  4Comments
dcramer picture dcramer  路  4Comments
maefinho picture maefinho  路  3Comments