How to enforce 2FA globally

beegie · February 26, 2021, 9:28am

Hello,
Thank you for the great work on this software. It is great !
I wanted to know if there is a way to enforce the use of 2FA for every user that has an account on the bitwarden server ?

I found this option that I can configure on the admin panel:

Disable 2FA remember
Enabling this would force the users to use a second factor to login every time.
Note that the checkbox would still be present, but ignored.
DISABLE_2FA_REMEMBER=false"

But it doesn’t seem to work.
I also found out that we can enforce 2FA for an organization, but I would like to do it for the bitwarden instance globally.
Is there anything I missed, or is it simply not possible to enforce for every user ?

Thanks for your help

BlackDex · February 26, 2021, 12:14pm

Well, maybe we need to change the description a bit since that is not what it does.
This only works if someone HAS 2FA enabled. And when the user has 2FA enabled, they always need to use there 2FA instead of only the password. This feature is revering to that specific checkbox during login, which is only visible if you have it enabled.

Forcing 2FA is not (yet) available in bitwarden_rs.

jamin.collins · January 10, 2022, 6:42pm

I too would love to have this as a requirement. What is the best way to raise this to the developers? This forum, or should we open an issue on the GitHub tracker for it?

Topic		Replies	Views
Disabling 2FA TOTP Help	4	2922	April 23, 2020
(Firefox-Web) Bitwarden doesnt keep me logged in Help	2	132	January 14, 2024
Need help with 2FA setup with Bitwarden RS Help	2	3899	February 22, 2021
Can't login if two factor authentication is enabled Help	8	2786	June 15, 2020
Firefox extension logs me out every couple of days Help	3	97	February 10, 2024

How to enforce 2FA globally

Related Topics