Strengthen account security by requiring MFA verification before performing protected actions in Atera. Protected actions add an extra layer of identity verification for sensitive operations, helping prevent unauthorized changes and reduce security risks across your organization.

Note:

• Admin permissions are required to configure protected actions.
• Protected actions do not apply to users authenticated through Single sign-on (SSO).
• Reauthentication is required again 24 hours after successful verification, or when the user session ends.

Configure protected actions

Enable MFA verification for protected actions to require users to verify their identity before performing sensitive operations in Atera. 

Note:

• Protected actions are disabled by default.
• Changes apply immediately after enabling.

To configure protected actions:

1. Click Admin > Users and security > Security and authentication.

The Security and authentication page appears.

2. Click to expand the MFA for protected actions section.

Note: There is currently no option to enable MFA for specific protected actions only. Once you enable it, all protected actions displayed on the list will require MFA verification.

3. Enable Require MFA for actions.

Protected actions now require MFA verification for all applicable users, excluding users authenticated through SSO. When a user attempts to perform a protected action, they will be prompted to verify their identity using MFA before they can continue.

Note:

• Successful verification allows additional protected actions for 24 hours.
• Failed or canceled authentication blocks the protected action until verification is successfully completed.