Two factor authentication
Completed
Hi,
I'd like to suggest that we get support for 2 factor authentication via e.g. Google Authenticator or Microsoft Authenticator.
This part of the security is an important part of limiting access through the human factor of security.
Jacob
-
Official comment
Hi Guys!
Very glad to announce that Citrix Podio now supports Two Factor Authentication (we call it Two Step Verification - 2SV). We understand that this had been long due and really appreciate your patience.
For adding this extra layer of security, every user needs to voluntarily opt into this feature from their Account Settings page.
Check out more details about the feature in our product news and help centre articles.
Best Regards,
//Pallabi - Podio Product Manager
Comment actions -
I can't believe this has not been implemented yet. Podio claims that the UN agency on human rights uses their product, but I have serious doubts that their security team would allow that as long as Podio does not support 2FA. Come on guys, you gotta catch up with the rest of the software industry on this one! http://www.cnet.com/news/two-factor-authentication-what-you-need-to-know-faq/
-
It seems a bit irresponsible for a company like Podio - in this day in age - not to offer an extra layer of security.
Especially considering there are no proper log files and no way for an administrator to control unauthorized access to employees Podio accounts (by IP address limitations or other means).
As Podio a full circle kind of tool it would be obvious to use it for most work flows and processes in a company. Which also means quite sensitive information would be stored there.
I mean if Asana can do it through Forced Google sign-in, Basecamp through and Slack through most 3rd party SSO providers I am sure Podio should be to implement such a relative simple 2 step verification layer.
Google Authentication or SMS verification could be a place to start :)
Podio is an amazing tool - just not for managing sensitive information currently it seems.
Hope you'll solve this soon.
NB: Above article was posted in April 2014, so companies listed might have improved security since then.
-
Podio's lack of two factor has put my company in s position to basically look at other options even though we just moved on to this platform over the course of 5 months. So now, yammer and SharePoint combo is under evaluation. I'm hoping that Podio corrects this before the move to those products happen otherwise this is just another example of Citrix grabbing a product and well... Not realizing its potential and watch it go by the waste side.
Unfortunately, more and more companies are like mine where security is not an option and something like this needs to be there. I think Podio is going to lose a lot of folks because of this. It's a shame because we have really grown to like the product and our customers do too. However the safety of their information is more important.
-
Sara, the "feature" you describe is not a solution for the thousands of businesses who have existing accounts. Copy everything to a new organization to enable 2FA? Why does Podio need years to implement 2FA, and then does it in a way that requires people to use Citrix or ShareFile and on top of that set up a new organization? I didn't sign up for ShareFile -- I have been paying a good chunk of money every month for years in order to use Podio, and I don't see why we have to deal with third parties in order to get a feature that every other major service in the world has been offering for a long time. What is this? An attempt to sell Citrix or ShareFile products to us?
-
Seriously -- to get this amazing enhanced security feature that Citrix, "a global IT security provider" that is "100% dedicated to keeping your data secure" is offering to us, we need to pipe all data of our organization through some third party provider's servers in order to copy it back to Podio? Seriously?
-
Podio, why haven't you yet realized how important 2FA has become, especially for a product like this???
This discussion was opened almost two years ago now, and STILLLLLLL nothing has been done about it????Or am I seriously mistaken, and you have released some sort of announcement that 2FA is coming or already in the process of being integrated???
Either way, this really needs to be put into your feature road-map, like Yesterday!
Your customers have been, and ARE STILL, practically screaming and begging for it.
Thanks,
Alan Harrylal
Sr. Systems Engineer
Synergy Development Consulting. -
2FA is crucial, and would hate to see PODIO go in my organization because the lack of 2FA. I have put in many hours learning PODIO to now see it go to for not. I believe we have a great collaboration tool here but without 2FA it will be removed from many organizations. Lets face it security has become a top priority.
-
Hi Sara, 2016 has passed, it's been 3 years since your customers have started to ask for this feature, and there is still no 2FA available for Podio. Could you share your dev team's rationale that puts Two-Factor-Authentication at the bottom of their backlog while pretty much everyone else and their grandmother have implemented this crucial security feature?
-
Hello,
I just wanted to provide a "thread bump" here and see if any progress had been made. Our firm has been able to implement MFA for all of our software products now...except Podio. We do use ShareFile, but unfortunately we created our workspaces prior to the new "ShareFile MFA" feature, and migrating the huge amount of sensitive data, along with all of the comments, tasks, etc. is simply not feasible, and is not something that can safely be outsourced to a 3rd party.
I suppose my confusion lies within the fact the Globiflow already has a fairly robust SMS messaging system in place...it seems like you could take this infrastructure to create a MFA tool without a whole lot more work.
Ultimately, I guess it would be helpful to get *some* idea if/when MFA will be enabled for accounts that were created prior to the Podio-ShareFile MFA integration. If it's never going to happen, at least let us know, so I can bite the bullet and simply begin to migrate our old workspace data into the new "ShareFile compatible" account...but I really don't want to do this, only to have MFA for older accounts suddenly come online a couple of months after we've incurred the time / expense of migrating our data into the more secure arrangement.
Podio has absolutely changed the way our company runs, and aside from the MFA issue, I only have incredibly positive things to say about this software. I've referred a number of colleagues and clients to this platform, so it breaks my heart that we may have to consider other options in order to comply with industry standards and best practices. Please don't let this happen!!!!
Please sign in to leave a comment.
Comments
65 comments