If I have both Two-Factor Authentication (2FA) and Single Sign-On (SSO) enabled for my environment simultaneously, will the configuration be compatible with Autotask PSA?
- Autotask PSA
Yes, it is compatible. However, in a scenario where a user account has both SSO and 2FA enabled, PSA will bypass the 2FA authentication and the user will not receive a prompt to enter their OTP.
This behavior is due to the authentication process being carried out on the Identity Provider (IdP) side, rather than on the PSA side.
As a result, you do not need to disable 2FA for a user with both authentication methods enabled.
For more information about the authentication workflows for Single Sign-On, see our Autotask PSA: Logging in with Single Sign-On (SSO) to PSA, LiveMobile, or the Microsoft Outlook Extension article.