• 131
• 255
• 14

How to enable and enforcing 2FA for G Suite

by bernt & torsten

I’m a big fan of G Suite, using G Suite simplifies my need for using several services for my day to day business. I do not need to have an IT infrastructure, I just subscribe to one.

Today’s topic that I like to share, is how to enable 2-factor authentication (2FA) for G Suite. G Suite provides the option of turning on two-step verification for your user accounts.

2FA provides an extra layer of security to your user’s data by having them authenticate with a verification code in addition to their username and password when signing in to their account. I will provide you with the instructions to enabling two-step verification as well as enforcing its use for your G Suite service.

Enabling Two-Step Verification

These steps will guide you through enabling the option of using two-step verification for your G Suite account users. This allows your users to choose to use the feature if they wish. It does not make two-step verification mandatory for your users.

If you wish to make it mandatory for your users to use two-step authentication, please continue on to the enforcing two-step verification instructions once the two-step verification option is enabled.

1. Log into your G Suite Admin Console (at admin.google.com)
2. Click Security (if you do not see Security, click More Controls)

1. Click Basic Settings

Scroll down to the Two-Step Verification setting and tick the checkbox to Allow users to turn on 2-step verification. This will enable the ability for the account user to utilize two-step authentication if they choose.

Click on the Save changes button that appears.

This makes 2-Step Verification available for your users but does not automatically enroll them. To enroll, users need to configure their verification settings individually. See Turn on 2-Step Verification.

Once all users have enrolled in 2-Step Verification, you may enforce its use following the instructions in Manage your users’ security settings.

Enforcing Two-Step Verification

These steps will guide you through enforcing two-step verification for your G Suite account users. This will make it mandatory for your users to use two-step verification when signing in.

1. Once you’ve completed the steps above, you will now see a link at the bottom of the two-step verification settings that says Go to advanced settings to enforce 2-step verification. Click the link to continue.

1. You will now find yourself in the advanced security settings panel. Here, you can select Turn on enforcement now or Turn on enforcement from date.

1. When you select an option, you will receive a notification window that reminds you that enabling this setting will force all users to use two-step verification. Click on OK to continue.

1. Finally, click the Save changes button at the bottom right corner of your browser window to finalize the selection of two-step verification.

Google Resources

• G Suite Help: Two-Step Verification
• G Suite Help: Set up 2-Step Verification

Conclusion

If you use G Suite, I highly recommend that you enable this option to make your accounts more secure.

Like to hear your view about 2FA, feel free to comment below.