How to Require Secure Sign In for Teams

Team owners can require team members to use a secure sign-in method.

When a team requires secure sign-in, only team members who log in to DigitalOcean via Google or GitHub or a DigitalOcean account with two-factor authentication (2FA) can access the team.

Any team owner can require secure sign-in for existing teams at any time. You can also enable secure sign-in during team creation.

Require Secure Sign-In

To require secure sign-in for a team, first switch to the team in the control panel. Click the profile icon in the top right to open the drop-down menu.

Click Switch Teams, then click the name of team to switch to that team.

Next, in the left menu of the control panel, click Settings to go to the team settings page. In the Secure sign-in section, click Enable.

In the window that opens, click Enable Secure Sign-In. This notifies all team members via email that secure sign-in is now required.

If your DigitalOcean account doesn’t use a secure sign-in, you are then prompted to update your sign-in method.

Similarly, when a team member without an accepted sign-in method tries to access the team, they are prompted to update their sign-in method to regain access to the team. This prevents team members from accessing the team until they switch to Google or GitHub or enable 2FA on their DigitalOcean account.

Stop Requiring Secure Sign-In

Team owners can stop requiring secure sign-in for a team on the team page.

On the team settings page, in the Secure Sign-In section, click Disable. In the window that opens, confirm by clicking Yes, Disable Secure Sign-In.

This allows team members who log in using a DigitalOcean account without 2FA to access the team.