Limit/modify 2 Factor authentication options for Staff Users
The 2-factor Authentication page is setup to have 3 options, text, email and authenticator app. Currently, if a Staff user has 2 or more emails addresses on file it will display ALL email addresses and same goes for phone numbers on file. This is extremely worrisome and is a signifant privacy concern. As Admins, we need to have a way to limit or select which email/phone number can be used for multi-factor (even as simple as just using the Primary info for each option). As personal emails are much less secure than work emails, the work email would likely be the default option. The other issue is that if there are staff with Staff Access and Fund Portal access, we need a way to merge profiles and be able to select which email/phone are being used for each portal/software login instead of having to keep and manage 2 separate CSuite profiles.
Tiffany Caron
shared this idea
Portal access is limited to the primary email address on a profile. The current help article will be updated to reflect this information. Otherwise, it is accurate. https://support.foundant.com/hc/en-us/articles/21412855474199-Portal