How to manage team policies
If you have a Proton Pass Professional or Proton Business Suite administrator account, you can set up and manage policies for your team. Currently, we support the following policies.
Disable sharing outside the organization
If this option is turned on, your organization’s members can only share vaults within your organization.
Learn how to share vaults using:
- The Pass browser extension(nouvelle fenêtre)
- The Pass Android app(nouvelle fenêtre)
- The Pass iOS and iPadOS apps(nouvelle fenêtre)
Disable data export for organization members
By default, organization members can only export vaults they’ve created (this includes vaults they’ve shared and any logins other users have contributed). If you turn this option on, your organization members can’t export any data.
Learn how to export data from Proton Pass(nouvelle fenêtre)
Require 2FA
By default, two-factor authentication (2FA) is strongly encouraged but is not enforced. Using authentication security policies, you can:
- Send email reminders to encourage your organization members to turn on 2FA
- Require 2FA for administrators
- Require 2FA for everyone
Learn more about how to use 2FA in Proton Pass(nouvelle fenêtre)
Note that authentication security is handled separately in the Proton Pass admin panel from the other team policies (see below).
Moving forward, we’ll add more policies to help you manage your team’s security in Proton Pass.
How to manage your team policies
1. Sign in to pass.proton.me(nouvelle fenêtre) using your Proton Pass for Business username and password and click Admin panel.
2. Go to Proton Pass → Policies and toggle the desired team policy on or off.
How to manage your team’s authentication security
Sign in to pass.proton.me(nouvelle fenêtre) using your Proton Pass for Business username and password, click Admin panel (as above), and go to Organization → Authentication security.
To send your members an email reminder to use 2FA, go to Two-factor authentication reminders and click Send email reminder.
You can now select the organization members you’d like to send a reminder email to.
To enforce a 2FA policy, go to Two-factor authentication enforcement and toggle the desired enforcement policy switch on or off.
Learn what to do if 2FA is enforced for you(nouvelle fenêtre)