We wish to enable two-step login (MFA - multi-factor authentication) verification combined with a list of trusted network IPs. If a user attempts to access Egnyte from outside the list of trusted IPs, then they will receive an MFA prompt; otherwise, MFA will not be required.
Generally, this functionality currently works as designed. However, once we enable two-step login, upon their next login all users will be prompted for a device registration, and they may not proceed with login until a device has been registered. The majority of our users do not have corporate-issued mobile devices, nor do they have a use case for accessing Egnyte from outside of our network. Therefore, we cannot fully roll out Egnyte until this has been resolved. The requested behavior is one of the following:
1) Egnyte will prompt for device registration when access is requested from outside the trusted IP list; or...
2) Ability to assign the device registration prompt and/or outside trusted IP access to roles or individual users.