[G Suite] How to Configure Mandatory Two-Factor Authentication
I’ll introduce how to configure mandatory two-factor authentication in G Suite.
Official Help for Implementing G Suite Two-Factor Authentication
The official help that was useful for implementing two-factor authentication in G Suite is as follows, for [administrators] and [internal users] respectively.
For Administrators
For Internal Users
G Suite Two-Factor Authentication Process Configuration Example
My configuration example when implementing the G Suite two-factor authentication process is as follows:
- Implementation: Only during introduction [Enable enforcement from specified date], after introduction [Enable enforcement now]
- New user registration period: [1 week]
? With 1 day, there were many cases where the deadline had passed and individual support was needed, so I set it to 1 week. Ideally, I'd like to set it to 1 day. - Available two-factor authentication methods: [No restrictions]
- Two-factor authentication policy grace period: [Allow registration of trusted devices in two-factor authentication process]
Email Template for Internal Two-Factor Authentication Announcement
Email Subject:
Google 2段階認証のお願い (Request for Google Two-Factor Authentication)
Email Body:
※ 未設定の方にはアナウンス個別にアナウンスします (* Individual announcements will be made to those who haven’t set it up)
セキュリティ強化のために、2段階認証を ON にしてください (Please turn ON two-factor authentication for enhanced security)
- 2 段階認証プロセスを導入する - G Suite 管理者 ヘルプ https://support.google.com/a/answer/9176657?hl=ja Japanese: 2 段階認証プロセスを有効にする - パソコン - Google アカウント ヘルプ
- 不正ログイン対策のための『2段階認証サービス』設定手順書~Googleアカウント編~:IPA 独立行政法人 情報処理推進機構 https://www.ipa.go.jp/files/000077644.pdf
来月から、2段階認証を未設定だとログインできないようにして、セキュリティ向上させる予定です。 なにか質問があれば気軽に相談してください。 (From next month, we plan to prevent login without two-factor authentication setup to improve security. Please feel free to consult if you have any questions.)
That’s all about making two-factor authentication mandatory in G Suite from the Gemba.