Security key enforcement
launched in January 2017 and allows a G Suite Enterprise domain admin to enforce the use of security keys as a two-step verification (2SV) option to protect users against phishing. In addition to security key enforcement, G Suite domain admins can also use
other 2SV methods such as the Google Authenticator app, text messages, or phone calls. To make 2SV deployment easier in your domain, we've added two new options in the Admin console.
Admin-led security key enrollment for end usersG Suite Business and Enterprise admins can now enroll security keys on behalf of their users. After navigating to the User page from Admin console, click ADD NEW KEY and add a new security key using the
standard security key enrollment process.
2SV enrollment periodsPreviously, whenever a new user was created in an organizational unit where 2SV was enforced, that user had to use 2SV from his or her first login. Admin feedback has told us that enrollment periods would help in onboarding users to 2SV more efficiently.
Going forward, G Suite admins can specify an enrollment period during which newly created users can sign in with just their passwords and complete their 2SV setup.
To learn more, check out our
updated Set up 2-Step Verification guide in the Help Center.
Launch DetailsRelease track: Launching to both Rapid release and Scheduled release
Editions:- Enrolling security keys on behalf of users available to G Suite Business and Enterprise editions only
- Specifying 2SV enrollment periods available to all G Suite editions
Rollout pace: Full rollout (1-3 days for feature visibility)
Impact: Admins only
Action: Admin action suggested/FYI
More InformationHelp CenterLaunch release calendarLaunch detail categoriesGet these product update alerts by emailSubscribe to the RSS feed of these updates