Even a proper self-enrol MFA setup process would be a major step forwards.
Especially given all the recent removal of the majority of customisation features under the banner of "we're making things more secure", the current process for setting-up app-based MFA/2FA is horrendous.
No one except for the user themself should EVER see the MFA/2FA Secret Key. The fact that an SC admin has to both generate one and then manually enter it into the admin portal is beyond awful.
ConnectWise/ScreenConnect clearly have the ability to create valid secret keys, since you do so in the "MFA Setup Process" documentation. This just needs to be built-in to the user login process.
Even a proper self-enrol MFA setup process would be a major step forwards.
Especially given all the recent removal of the majority of customisation features under the banner of "we're making things more secure", the current process for setting-up app-based MFA/2FA is horrendous.
No one except for the user themself should EVER see the MFA/2FA Secret Key. The fact that an SC admin has to both generate one and then manually enter it into the admin portal is beyond awful.
ConnectWise/ScreenConnect clearly have the ability to create valid secret keys, since you do so in the "MFA Setup Process" documentation. This just needs to be built-in to the user login process.
It's 2025... app-based MFA is not new anymore.