Skip to main content
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Go to solution
gallard
New

Feature Request: Enterprise Dashboard + User Managment (Including Password Policies)

We'd like to see some sort of Enterprise level Dashboard available, where we can manage multiple users for any of the products/services GoDaddy offers.

In our case, we currently have a few domain names, certificates and DNS management with GoDaddy; but as a business, it would be best to allow multiple users access to making changes, etc...
The current method of Delegated access is limiting because we can't enforce things like Password Policies or the use of MFA for anyone we give access to.

And we don't want to use a single login that is shared between users because we want to enforce MFA. (since you can't have multiple MFA accounts be authenticators for a single [GoDaddy] account).

 

The current structure is something like this:

 

  • BusinessEmail@business.com is the primary account holder for the services.
  • The primary account invites individual user accounts (userA@business.com, userB@business.com, etc...) so those people can look at and change things as needed.
    • But how to you enforce and ensure userA & userB are using strong passwords and MFA enabled if our business stipulates that is required for cloud services?  You need to be able to audit such things.

 

Having a single Dashboard with User Management would be the solution.

Then you can add user accounts to your GoDaddy main account and enforce policies.

The Primary Account would still be the "Boss" in a sense, but when inviting users into it's world, those users must comply with polices set by the primary account (such as needing to have 12 characters, complexity enabled, passwords that expire, as well as MFA enabled).

You could also add Roles to the system so that other users can assume and Admin role with ability to add additional users, change policies, etc...or roles that are Read-Only, or DNS management only, etc....


With that in mind, Password Policy options should include configurable items such as:

 

  • Password Length
  • Password Expiry (include email notification when about to expire-something that might be configurable as well for how many days in advance)
  • Password History (Configurable on how many previous passwords can't be reused)
  • Min Password Age (so users can't just continuously change their passwords to get around Password History quickly)
  • Password Complexity (choosing how many character types must be used; between lowercase, uppercase, numbers, symbols)
  • A Blacklist of passwords (so that if users try a word on the list, they'll be asked to use something different as their password).
    • The blacklist itself would be configurable (so we can add our own words to the list).
  • MFA
    • Forced (Everyone MUST use MFA without question)
    • Enabled but not required (users turn it on optionally)
    • Disabled (MFA can't be used; in case that's needed for some weird reason).



1 ACCEPTED SOLUTION
JesseW
Community Manager

Hey @gallard. Thanks for your post. This is great feedback! I'll make sure it gets passed to our team that handles the Delegate Access feature. 

 

JesseW - GoDaddy | Community Manager | 24/7 support available at x.co/247support | Remember to choose a solution and give likes.

View solution in original post

1 REPLY 1
JesseW
Community Manager

Hey @gallard. Thanks for your post. This is great feedback! I'll make sure it gets passed to our team that handles the Delegate Access feature. 

 

JesseW - GoDaddy | Community Manager | 24/7 support available at x.co/247support | Remember to choose a solution and give likes.

View solution in original post