Ability to un-enroll from MFA

I couldn't even reply to this without jumping through your 'hoop'. I don't care your reasoning. I think we should have the option of opting out. I now have to figure out how this will work with our elderly people who don't have cell phones. Ridiculous! Did your insurance company demand you do this?

 

 

Top Answer
Kyle_R
Employee

Hello,

As part of our new and updated feedback statuses, we wanted to update this idea to Acknowledged. There is a lot of feedback within this one thread in particular, some of which was implemented, a few things planned to be improved, and a few that most likely won’t be planned for in the near future.

First, some additional background information and more information as to the “why” of this change. From some of the comments, it feels like that question hasn’t been answered sufficiently. What’s so important and secure about email newsletters anyway? This had to do with a rise in attempted account takeovers the last several years. That is, a bad actor has somehow gained access to some account credentials and attempts to get into your account to send a spam or phishing email to your customers - potentially looking like it is from you. To be clear, this wasn’t due to any sort of Constant Contact breach, but potentially re-using credentials for your account that were no longer secure. Spam is a lucrative industry, and your Constant Contact account can be a valuable target because given our sending reputation, bad actors gaining access to Constant Contact have a better chance of hitting the inbox and getting their malicious messages read. Especially if it comes targeted to your list, looking like it is from your organization. So adding additional security measures protects your business, your subscribers, and it protects our service to ensure only legitimate permission based mail is being sent out. In this sense, the addition of MFA has been a big success to stop these kinds of attempts.

Now to address some of the feedback. Admittedly, this was quite a big change in a small amount of time. Some organizations shared one set of account credentials for all users of the account, so the need to change behavior to add additional individual users was new and taxing. It's worth noting that if you add more users to your account they can have their own MFA device for authentication. The MFA process also needs some time to learn your device and what a “normal” login looks like for your organization. So, when it’s initially turned on you do get prompted more than you would under normal circumstances. If you still find yourself getting prompted for your MFA method on every login and you normally log in on the same device/network every time, that is not working as intended. Make sure you are not using an Incognito window every time, or please contact our support team to work out what the problem may be.

We have made changes to our MFA roll-out plan due in part to the feedback we received. We are working on the ability for self-recovery of MFA tokens, so if you lose your old device or need to update your MFA device you can do so without contacting our support team. All feedback received is actively reviewed and considered. We will continue to assess this feedback and make changes accordingly, which we will communicate to this thread.


177 Comments
MikeJ46
Rookie

How can we turn MFA off please - it's annoying and we don't want it or need it.
Thanks,

user571658
Rookie

Just reactivated our account and there is no way to decline  the MFA option. This simply does not work for my business and its users. Just plain inconvenient and I will be looking at alternative options for our marketing emails.

Frankie_P
Employee

Hi @MikeJ46 at this time being able to unenroll from MFA is not an available feature. It is however a feature request we are collecting feedback on. In fact we have merged your post into a larger thread focused on this idea.

Traywicked1
Rookie

This is EXTREMELY annoying and inconvenient, and it seems like YOU'RE NOT LISTENING!!!! Please fix this problem or we will be going with another email service. We are non-profit, and this monthly charge is a lot for us. You're making it even more difficult to justify your service. 

EricB578
Rookie

I'm not at all interested in 2FA but you gave no indication that I can't use my account at all without setting up that "Feature".

Give customers the option to bypass this, its not necessary or useful for all customers, and now I cant use my account.

MarthaH418
Rookie
Hi there - I am the account owner and want to disable MFA for the account admins but that option is greyed out and I cannot do anything. Would you please advise? thanks.
Frankie_P
Employee

Hi @MarthaH418 we apologize at this time being able to opt-out of multi-factor authentication is not an available feature. It is however a feature request we are collecting feedback on. We have merged your post into a larger thread on this idea in the meantime.

PaulA2750
Campaign Contributor

YOUR DUAL LOG-IN requirements sucks, is burdening and is the reason we will be leaving CC for another service. Sad ... you don't listen to your clients.

Frankie_P
Employee
Status changed to: Open Questions

Hi @PaulA2750 what about our multi-factor authentication does not fit your needs? How would you like to see it work instead?

Frankie_P
Employee

Reply from @PaulA2750:

First …. Nothing about it “fits” my needs.

It’s nothing more than a nuisance.

It creates more hassle the help !

It is not necessary …

As the paying customer… I don’t approve of this requirement.

And as important… dozens ( likely thousands) of your clients have shared similar concerns with you and you have not taken any useful action.

If this was a “free” service … I would have to put up with it. As I am a paying customer… I don’t.

If you don’t have an “opt out” option … you will lose many customers…. I plan on being one of them.

I use to tell people how great you were …. Now I tell them how you fail in listening to your client base.

No need to reply ….



Resources
Getting Started with Ideas

Welcome to Ideas! This board is dedicated to providing a space for our intrepid users to provide personal insight and feedback on additions and enhancements they’d like to see in your Constant Contact account.

Read more
Announcements
What's New?

See the latest Constant Contact product release notes and updates.

Learn More