+13Hello team!
In case of enabling mfa for ALL users / groups, Im wondering if there is any “backdoor” for admin user.
In case of lost Microsoft Authenticator app and email access, is there any way to restore access to Commcell, even with help of Commvault supoprt?
I cant decide if it’s preferred to enable mfa for all admins (master) users or to leave one admin user without mfa (with a strong password) in case of backdoor.
Please for your thoughts.
We've recently introduced a feature to facilitate SAML connectivity testing. This enables you to ensure SAML functionality before enabling it for all users. Furthermore, you can manage associated settings by navigating to the association section. By creating a breakglass user, you can verify that SAML login association doesn't apply to that user. you can setup MFA for this user also using either platform authentication for second factor.
+3I’m currently facing this issue, I’m doing a DR test restore of the CS, and used the staging option for an environment that is in a bubble. now when I try to login, the admin PWD, I get prompted to enter the MFA token, but it can’t even use it as it is isolated.
+13I’m currently facing this issue, I’m doing a DR test restore of the CS, and used the staging option for an environment that is in a bubble. now when I try to login, the admin PWD, I get prompted to enter the MFA token, but it can’t even use it as it is isolated.
In this case, I believe a possible solution is to leave an admin (strong password) backdoor user.
Also, not sure if Commvault Support could assist you.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
