Uploaded image for project: 'Confluence Server and Data Center'
  1. Confluence Server and Data Center
  2. CONFSERVER-24322

Two Factor authorization, like Gmail has, to Confluence

    XMLWordPrintable

Details

    • 8
    • 33
    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.

      Problem definition

      Security of Confluence content is very important for many of our customers and securing the login action is the first step to ensure valid authentication to protect confidential information. Currently, Confluence offers only email/username password combination is available.

      Suggested Solution

      Two factors authentication can be adopted to add more security to Confluence login action.
      Many solutions are available, like Gmail approach for two factor:

      • SMS based, no new hardware needed
      • Can authorize a browser for up to 30 days from a single two factors auth (e.g. only pw is needed for 30 days, and on day 31 you have to do the whole two factors dance)
      • Gmails approach is a nice combination of security and ease of use but others are available too.

      Plugins as workaround

      There is 2 plugin offering this features

      1. 2-Factor Auth Secure Login - Confluence
      2. Duo for Confluence.

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              3135197820ab rafael zimberoff
              Votes:
              144 Vote for this issue
              Watchers:
              115 Start watching this issue

              Dates

                Created:
                Updated: