Feature Release: Email 2FA for Nebula

Features
Written By Daniel Mangassarian

As part of our September release, Nebula is expanding login security options with the introduction of Email Two-Factor Authentication (2FA). This update gives administrators even more flexibility to manage authentication at the firm level, while giving users a fast and simple way to secure their accounts with an emailed code.

This builds on earlier enhancements from when Nebula introduced the ability to configure Duo 2FA. With this latest release, firms now have greater choice and control over how authentication is enforced across their users.

Why It Matters

Account credentials alone are no longer enough. Adding a second authentication factor helps safeguard against unauthorized access. With this release, Nebula delivers:

  • Greater Choice in Security: Firms can enable Duo, Email, or both, tailoring login security to specific firm needs.

  • Firm-Level Control: 2FA options are configured and enforced at the firm level, ensuring consistent application.

  • Secure Email Codes: Users receive a unique 6-digit code by email, valid for 10 minutes, providing that extra layer of protection without adding unnecessary friction.

How It Works

Enabling Email 2FA is very straightforward.

At the Firm Level:

  • Admins navigate to Settings > Firms to configure MFA options. Duo and Email can be enabled individually or together. If 2FA is set to Required, all users in that firm must use one of the approved methods. If 2FA is simply enabled, users may opt in on their profile.

At the User Level:

  • Once Email 2FA is enabled for a firm, admins can set it for specific users under Settings > Users. Users can only have one 2FA method at a time—either Duo or Email (or SSO, if configured).

Then, during login, after entering username and password, users will be prompted for a one-time 6-digit code delivered to their inbox. This one-time code, valid for 10 minutes, will allow users to login as normal.

Key Notes for Firms:

  • Existing Duo Users:

    • Email 2FA will not replace Duo for existing users. Those who want to switch will need to configure it.

  • Migration Support:

    • Any firm already using Duo will see that configuration automatically migrated at the firm level.

  • Consistency Across Users:

    • When MFA is required at the firm level, every user in that firm must have it enabled, ensuring full compliance with policy.

Smarter Security, Simplified

By introducing Email 2FA, Nebula adds another layer of protection while keeping the login experience simple. Firms can now decide the right balance of security and convenience, all managed from a centralized, intuitive interface.

If you’re ready to see how Nebula’s many features can help meet your organization’s needs, schedule a demo here and speak to a representative to see its powerful capabilities in action!

Daniel Mangassarian

Danny is one of our Nebula Product Marketing Managers. He specializes in product strategy, audience targeting, and cross-functional collaboration to bring impactful ideas to life. He’s passionate about building products that solve real-world problems and deliver measurable results.

Next

Nebula Double Release: Search Builder Fields and Exportable Keywords