This improvement adds a Privileged column and filter on the Security > Multi-Factor Authentication (MFA) page so you can see which employees have high-risk permissions and confirm MFA is turned on before enforcement.
.png?sv=2022-11-02&spr=https&st=2026-05-14T13%3A04%3A19Z&se=2026-05-14T13%3A16%3A19Z&sr=c&sp=r&sig=j1JepAyhF1Hfv%2FRychp85Zg6hUSIo8fZL%2Fj8XdE7iPk%3D)
What's changing?
You now see a new Privileged column on the Security → MFA page in ServiceTitan. This column shows Yes or No based on whether a person has high-risk permissions, either directly or through a role. You can also filter the list to view only privileged users. This gives you clear visibility before the next MFA enforcement wave.
Resources
Before and After
Before (Current)
Go to Settings > Security > MFA.
Review the list of employees.
Check each role and permission to guess who may be considered high risk.
Manually track who needs MFA turned on.
Impact: You may miss users with sensitive permissions. Preparing for MFA enforcement takes extra time and review.
After
Go to Settings > Security > MFA.
Find the new Privileged column.
Filter by Privileged = Yes.
Turn on MFA for anyone who does not have it enabled.
Impact: You can quickly see who is considered high risk and confirm MFA coverage before enforcement.
Who uses this feature
All Business Types
Administrators
Region availability: All regions.
How it works for your industry
Residential Service and Replacement
An Administrator reviews the Security > Multi-Factor Authentication (MFA) page before enforcement. The Privileged column shows which office staff have sensitive permissions tied to service pricing or refunds.
Before an enforcement deadline, the Administrator filters by Privileged = Yes. They confirm that managers with approval rights have MFA enabled.
During a quarterly security review, the Administrator exports or reviews the list of privileged users and verifies MFA coverage.
Commercial Service and Replacement
An Administrator checks which team members can adjust large commercial invoices. The Privileged column highlights those accounts.
Before rolling out stricter MFA rules, the Administrator filters for Privileged users and confirms enrollment.
When new managers are added, the Administrator reviews the MFA page to confirm high-risk accounts are protected.
Residential Construction
An Administrator reviews permissions for project managers handling change orders. The Privileged column identifies those with elevated access.
Before enforcement begins, the Administrator filters for Privileged employees and checks MFA status.
As roles change during a build cycle, the Administrator revisits the MFA page to confirm coverage.
Commercial Construction
An Administrator oversees multiple large projects with complex billing. The Privileged column shows which accounts have sensitive financial permissions.
Before a compliance review, the Administrator filters for Privileged users and confirms MFA enrollment.
When onboarding new leadership staff, the Administrator uses the MFA page to verify high-risk access is secured.
How to Prepare?
Confirm who in your company manages permissions and security settings.
Identify roles with sensitive or high-risk permissions.
Train Administrators to use the Privileged filter on the MFA page.
Align your internal policy so privileged accounts must have MFA enabled.
Review MFA status regularly before enforcement deadlines.