Mautic Community Forums

Securing access to mautic

Given the fact, that Mautic usually will contain most sensitive data of a company - what good practices do you apply to secure the data and access to it?

E.g. is there something like a 2 factor authentication in the roadmap?

Given the fact, that Mautic usually will contain most sensitive data of a company - what good practices do you apply to secure the data and access to it?
E.g. is there something like a 2 factor authentication in the roadmap?

Not sure if two factor authentication does help - usually even your sys admin does not use it, but has just a (hopefully strong) pwd for root user, so even if Mautic would have a two factor authentication the machine it is running on and probably also the backup will just be pwd secured … Instead, I would recommend to use the already available user and roles feature in Mautic as much as possible. In addition, create a document where you explain the logic you have chosen and you are save if someone asks you about the legal requirements.