Set Mandatory MFA for Users in Your Vault System

Modified on: Fri, 9 May, 2025 at 6:07 PM

Enhance account security by Setting MFA as Mandatory for internal users, clients, or all. Contact Support to enable this feature.

Multi-Factor Authentication (MFA) is a critical security layer that helps protect user accounts and sensitive data by requiring an extra step to verify identity during login. FutureVault allows your organization to take full control over MFA enforcement—giving you the flexibility to decide who must use MFA and how they authenticate.

Enabling mandatory MFA ensures stronger protection against unauthorized access, especially for teams managing confidential documents and workflows.

How to Enable Mandatory MFA

To set up MFA enforcement for your organization, please contact your Customer Success Manager or email us at support@futurevault.com. Once enabled, the configuration will apply across your platform based on your selected preferences.

Available MFA Enforcement Options

You can choose to enforce MFA for specific user groups or for everyone who accesses your system. Once enabled by our team, your organization can select one of the following configurations:

  • Internal Team Only
    Require MFA only for your company’s administrative and representative users.

  • Internal Team + Clients
    Extend the requirement to both your internal team and clients, while keeping it optional for collaborators.

  • All Users
    Enforce MFA for all user types, including internal users, clients, and collaborators.

This level of customization allows your company to align security practices with operational needs and user roles.

Authentication Method Options

Alongside choosing who must use MFA, you can also define how they authenticate. FutureVault supports the following MFA methods:

  • SMS Code – A verification code is sent via text message.

  • Authenticator App – A time-based code generated through apps like Google Authenticator, Microsoft Authenticator, or others.

  • User Preference – Let users choose their preferred method between SMS and app. (Recommended)

Your organization can enforce a specific method or allow users to select the one that works best for them.

Best Practices & Recommendations

  • Use the Authenticator App for Maximum Security: We recommend the Authenticator App over SMS, as it's more resistant to SIM-swapping and interception.

  • Start with Internal Teams: If you're unsure, begin by enabling MFA for internal users before expanding to clients.

  • Notify Users Before Enabling: Communicate the change with users ahead of time and provide instructions for setting up MFA.

Frequently Asked Questions

Q: Can we change our MFA enforcement settings later?
A: Yes, simply reach out to your Customer Success contact to request a change.

Q: What happens if a user doesn’t set up MFA after it’s made mandatory?
A: They will not be able to access the platform until MFA is configured.

Q: Can we exempt specific users?
A: Currently, exemptions are based on user type (internal, client, collaborator), not individual accounts.

 

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.