Summary:

Provide the ability to customize or disable the email notifications sent when 2FA is disabled, particularly in scenarios where 2FA is mandatory and will need to be re-enabled.

Background:

Currently, when 2FA is temporarily disabled for accounts, users receive an email notification with the subject "Two-step verification isn't required anymore." The body of the email further suggests that users can log in without enabling 2FA. This message is misleading in situations where 2FA is actually mandatory and users will be required to re-enable it upon their next login. This creates unnecessary confusion among users.

Requirement:

• As part of an update process where email addresses for all accounts are changed, 2FA will need to be reset for all accounts.

• Even though 2FA is temporarily disabled, it remains mandatory, and users will need to set it up again when logging in with their new email addresses.

• The current notification contradicts this process, leading to potential user confusion.

Proposed Solution:

1. Customization Option:

• Allow administrators to customize the email notification content to accurately reflect the temporary nature of the 2FA disablement and the mandatory requirement for re-enablement upon the next login.

2. Disabling Option:

• Provide an option for administrators to disable these specific email notifications entirely during processes where a 2FA reset is planned, such as during mass email updates.

Impact:

Implementing this feature would improve clarity and user experience during account updates, reducing support inquiries related to misleading communications.