Hello Zoho Projects Team,
We hope you are doing well.
We would like to submit an urgent security enhancement request regarding the Zoho Projects Client Portal. At this time, as far as we are aware, there is no Multi-Factor Authentication (MFA) available for client portal users. This creates a serious security risk because the portal may contain sensitive internal data, project files, discussions, and shared documents.
In today’s security landscape, password-only access is not sufficient for protecting business data and customer projects.
We kindly request that Zoho Projects introduce Multi-Factor Authentication (MFA) for client portal users, with support for modern and secure authentication methods such as:
TOTP-based MFA using authenticator apps (Google Authenticator, Microsoft Authenticator, Zoho OneAuth, Authy, etc.)
Email-based OTP verification as a fallback option
SMS-based OTP verification as an optional method
Backup recovery codes for account safety
More secure than SMS (not vulnerable to SIM swapping)
Works without mobile network coverage
Does not require sharing phone numbers
Fast, easy to use, and widely supported
Already used in other Zoho products such as Zoho One and Zoho Creator Client Portal
Security is a top priority, especially when external users access internal project information. Adding MFA to the Zoho Projects Client Portal is essential and urgent to maintain trust and protect users from unauthorized access and security breaches.
We kindly ask you to prioritize this improvement as soon as possible.
Thank you for your consideration and continued innovation.
Kind regards,
Ram