PHPJunkyard support forum

Hesk V3.5.3
I have just done a brand new fresh install of HESK, and i have a problem that MFA is ONLY working for Users>Team. MFA is not offered for Users>Customers.

In Users>Team, the MFA column shows "Email" ( and in the profile i can change it to App authenticator), and i do get the MFA code by email
In Users>Customers, the MFA column shows "None"

in Settings, I have
- Customer Accounts set to Enabled - Required to access (only logged-in customers can access the help desk and knowledgebase)
- Customers can register account, staff must approve new registrations
- Require MFA is Enabled. ( i have tried disabling / re-enabling )

Should MFA work for customers, and does anyone have any thought on how to get this working ?

Many thanks

MFA works for customers, but they need to set it up manually on their "Profile" page (https://example.com/hesk/profile.php)

For staff, MFA is turned on to email automatically when set to "Required" in Hesk settings. For customers, it isn't.

This is indeed something we can improve in the future (Required for staff, Required for customers, Required for all).

Hi Klemen,
Thanks. As a quick fix, is it as simple as setting a column in one of the database tables to enable email mfa, and if so can you advise which table ( and value), then I can hopefully modify the code myself

You need to set mfa_enrollment to 1 for customers.

This SQL should set it for all verified customers with an email:
I did not test the code, so backup the database before trying.