What is a one sentence summary of your feature request?
Enable Multi-Factor Authentication (MFA) on the EPP console to improve security and prevent login issues caused by the current two-factor authentication setup.
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
We currently use Google Authenticator as the sole method for Two-Factor Authentication (2FA) on the EPP console. However, we occasionally experience issues where the 2FA fails, which prevents us from logging in and accessing the system. This causes delays in our work and impacts productivity.
Disabling 2FA is not a viable option, as the EPP server is publicly accessible and requires a secure authentication mechanism to protect against unauthorized access. To address this, we propose enabling Multi-Factor Authentication (MFA), which would allow for additional authentication methods (such as backup codes, SMS, email, or hardware tokens) in case one method fails.
Implementing MFA would improve the reliability of the authentication process, enhance overall security, and ensure uninterrupted access to the EPP console even when one authentication factor encounters issues.
How do you currently solve the challenges you have by not having this feature?
Currently, when the Two-Factor Authentication (Google Authenticator) fails, we are unable to access the EPP console, which disrupts our ability to work. In such cases, we either have to wait until the issue resolves itself or escalate the problem to the system administrator for a temporary workaround—both of which lead to delays and reduce efficiency. Since we don’t have alternative authentication options in place, there is no reliable fallback method, making access dependent on a single point of failure