2FA forced to usermin users

kazgia · November 26, 2025, 3:00pm

SYSTEM INFORMATION
OS type and version	Virtualmin 7.50.0 GPL -Rocky linux 9
Webmin version	2.520
Usermin version	2420

I am currently working on enforcing Two-Factor Authentication (2FA) for all Usermin users on one of our email servers. While the 2FA functionality itself is working properly, I would like to implement a method that will force all users to activate 2FA on their next login. What is the recommended and officially supported method to enforce 2FA activation for all Usermin users?
i cannot find any manual about that.
Thank you,
Kazgia

Ilia · November 26, 2025, 4:45pm

Currently there is no way to enforce it, as far as I know, right @Jamie? But I think it could be a good suggestion for a future request.

Jamie · November 27, 2025, 3:21am

Correct, we don’t have support for forced enrollment currently.

Stegan · November 27, 2025, 9:58am

and hope we never do - anything “forced” and compulsory just takes everyone down a

Ilia · November 27, 2025, 11:42am

For an admin, it should be an option to enforce 2FA though, just like an admin can force a password change on the next login.

ID10T · November 27, 2025, 4:39pm

Agreed. We don’t know @kazgia 's use case here, nor do we really need too.

Jamie · November 28, 2025, 12:15am

To be clear, this would be an option the admin could enable to require 2fa for users on their system. We’d never make this mandatory for all Webmin or Usermin users.

shoulders · November 28, 2025, 9:32am

And if enabled, prompt the admin doing the change to get his 2fa codes

Stegan · November 28, 2025, 11:39am

and have them stored somewhere for when the users loose access to their 2fa device i have gone through this nightmare with a client and their stolen phone

Ilia · November 28, 2025, 11:42am

If you’re an admin of the system, it’s not a problem at all. Just disable 2FA for them.

shoulders · November 28, 2025, 11:52am

Use 2fas.com it stores the 2fa codes in an encrypted blob in your Google account or iPhone. Export and import is available

Ilia · November 28, 2025, 12:27pm

Why not just store it encrypted on your own computer or in an encrypted cloud?

shoulders · November 28, 2025, 1:43pm

Cross platform, so I can have it on my phone and all my browsers.

Stegan · November 28, 2025, 3:05pm

only if you have a ton of space to spare on a smartphone and can agree to other “terms/privacy/compliances” i tried and it refused. a smartphone is a requirement

shoulders · November 28, 2025, 3:17pm

You do not need a lot of space and the browser extension is optional.

You definitely need a mobile phone as this is the 2fa part.

kazgia · November 30, 2025, 5:30pm

hello guys,
As an administrator, I would like to have the ability to force 2FA enrollment for all Usermin users. In many environments, optional 2FA is not sufficient — security policies require that every mailbox user must enable it.
Having a built-in option to enforce 2FA globally would be extremely helpful, so that we can avoid custom configurations or third-party solutions.
I believe providing an admin-level “forced 2FA” feature would greatly benefit overall security and simplify management…Please consider scheduling this feature for the next update, perhaps?..plzzzzzzz

system · January 29, 2026, 5:31pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.