@arthurkemp As rightly pointed out by @Drew_C , you could reset the MFA settings for your account from My Settings page. Please see this for more details. Once you reset it, you will be signed out of the community and land on the login page. When you sign in to the community again, you will be prompted to follow the MFA registration process again.
... View more
A big problem in all kinds of communities is spam. At best, it clutters up your community with useless content, and at worst it exposes your users to threats and offensive content. Moderators have to spend significant time cleaning up posts, flagging spam, and reviewing posts marked as spam by the system for any legitimate content that should be restored. To help address these challenges we have introduced several enhancements to make it easier to manage spam on your community.
Spam Quarantine Page
The Spam Quarantine page lists the posts that were identified as spam and redirected to quarantine. With the new Spam Quarantine page you can -
Select multiple posts to mark them as Not Spam if they were mistakenly marked as spam.
See whether a post was auto classified as spam by the system, or by a moderator.
Filter out all the auto classified posts for quick review.
Select multiple posts and Hide them. The spam posts that you hide will not show up on the Spam Quarantine page. By doing so, you can avoid re-evaluating them for their content. However, the hidden posts will show up on the search results when you search in the Spam Quarantine page.
Ability to mark all the posts of a user as spam while banning the user from your community
While banning a user from the user’s profile page, check the Mark all content as spam option to mark all the posts of that user as spam and move them to Spam Quarantine. This also deletes all the Private Messages sent by that user.
Ensure that the Match exact username and Match exact email address checkboxes are selected and the user details are of the user whose profile page you are on.
Deleting Private Messages sent by a member while marking all their posts as spam
Earlier, the Mark all content as spam option to mark a member’s posts as spam, did not handle the user’s private messages. You had to manually delete all the private messages from that user. We have now extended this functionality to delete all the private messages sent by the user. This option is available under the Moderator Controls section in the user’s profile page. This will be useful in scenarios when community members are spammed via private messages.
We have also enhanced the spam detection logic so that legitimate posts are not marked as spam when they are edited and published multiple times.
These enhancements are available to all communities. You can follow the links below to -
Learn more about spam quarantine
Learn more about spam management
Learn more about banning users from the community
... View more
Thank you @SantoshS ! Regarding your questions:
1. To know about the permissions that require MFA, you could go to Learn more about MFA.
2. MFA is not enabled for Atlas as MFA support is currently available for non SSO communities.
... View more
Security is an important aspect of any community. To provide an additional layer of security for user accounts with privileged access rights within the community (usually Admins), Khoros has introduced Multi-Factor Authentication (MFA) support for communities. MFA increases user account security by requiring additional verification factors to prove a user’s identity when signing into the community application. Khoros provides MFA via the authenticator app mechanism.
Once MFA is enabled for a community, all privileged users (identified by the system on the basis of twenty six critical user permissions) will be prompted to set up MFA for their accounts. Users will provide their mobile number, and scan a QR code to add the Khoros community account in an authenticator app of their choice ( Google authenticator/ Microsoft authenticator/ Authy, etc) .
When these users login to the community, in addition to their username and password, they will have to go through another layer of authentication where they will be entering a Time-based One-Time Passcode (TOTP) from the authenticator app. Post verification, the user will be logged into the community.
First time setup:
Communities can opt for MFA. Open a Support ticket to enable MFA for your community . MFA support is currently available for non SSO communities . SSO Communities should configure MFA at their end with the SSO provider. You can follow the links below to
Learn more about MFA.
Set up MFA for your account
Sign in to your community with MFA
... View more