2FA/MFA - Two Factor Authentication

2FA/MFA - Two Factor Authentication

Enabling 2FA for your account can increase the security for operators accessing your data. ScoutDNS supports token based 2FA and this can be enforced for all operators with access to an account. Once enabled, any operator accessing your account will need to authenticate to ScoutDNS using a token sent to the email account associated to their user ID.  Super Admins have the ability to toggle 2FA on or off in the access management screen.

The 2FA toggle switch is located at the upper right side of the access management settings and can only be seen by Super Admin users. 




Once enabled any operator with access to the account will be required to authenticate with the 6 digit token sent to their email address. Operators can elect to Trust Device which prevents the need for a new token for 30 days at which point the operator will be asked to use a new token at the next login.

If an operator has access to multiple ScoutDNS accounts, the token is valid for any account with 2FA enabled so they will not be asked to enter a new token while their current session is valid. 




    • Related Articles

    • API Access

      API access is available to certain account types. API access gives admins the ability to self manage API tokens for access to the standard ScoutDNS Operator API. This help article is about the public operator API. For any other API access such as the ...

    • Organizations - Configuration and Management of Multi-Tenant Use

      ScoutDNS provides two levels of tenancy. The primary inherent level allows any operator to be a member of any number of accounts and could have different roles depending on each account setting. The second level enabled though the Organizations tab ...

    • Configure Custom Block Pages

      Admins have the ability to edit the default block page and to create multiple custom block pages to present to end users. Block pages are rendered in our block page service engine. You can assign custom block pages to WANs under Sites, and Roaming ...

    • Single Sign On (SSO) Configuration

      Enabling Single Sign On or SSO, allows admin accounts with external identify providers to manage access to ScoutDNS through their choses ID platform. Currently ScoutDNS SSO supports Entra ID (formerly Azure Identity) but we plan to add more ID ...

    • Relay - Setup and Configure

      ScoutDNS supports a Relay configuration which allows operators to install a lightweight service inside their network. The relay is a local forwarding resolver service that processes queries inside the operator network while relaying public queries to ...