Making the move to Multi-Factor Authentication

When logging on with just a username and a password is no longer good enough many people look towards multi-factor authentication (MFA) as a solution. This may be a simple need to improve, a response to an incident or the need to comply with new regulations. However, there are many types of MFA to choose from and knowing where to start and what to look for can be a daunting task.

Given the current covid-19 crisis, it is more important now than ever to be able to deploy MFA to a large number of users as quickly and seamlessly as possible, even remotely. Intuitiveness for both users and administrators is critical to maintaining a high pace of deployment.

Key MFA Considerations

Know where you are going

One of the first decisions you should make is what you want to do about the current password; in the short and long term. Many MFA solutions just provide the 2nd factor as they add a “thing” onto the existing password. This does not help you improve the security of the current password or pave a way of removing the password. Take care not to get locked into a solution that isn’t able to take you where you want to go in the long run.

Where will it be used

Another focus area needs to be the applications and systems you want to secure, how they are accessed, by whom and from where. Many organisations have legacy systems to deal with while also working on a Cloud migration, all need to be considered. Do the current applications support authentication standards such as RADIUS or SAML 2.0, are they Cloud-based or on-prem? One size does not fit all and this process will help do determine where the most security value can be achieved the quickest.

Ease of use and acceptance

Lastly, but perhaps most importantly, you need to think about your users and how the change will impact them, no matter how small. Moving away from passwords will most likely be welcomed and will go some way to ease any impending disruption. The ongoing user experience is crucial and this is where simplicity is key. Complexity will undoubtedly lead to pushback from users user, business inefficiencies and higher helpdesk costs.

Why Authlogics Multi-Factor Authentication

Know where you are going

One of the first decisions you should make is what you want to do about the current password; in the short and long term. Many MFA solutions just provide the 2nd factor as they add a “thing” onto the existing password. This does not help you improve the security of the current password or pave a way of removing the password. Take care not to get locked into a solution that isn’t able to take you where you want to go in the long run.

Where will it be used

Another focus area needs to be the applications and systems you want to secure, how they are accessed, by whom and from where. Many organisations have legacy systems to deal with while also working on a Cloud migration, all need to be considered. Do the current applications support authentication standards such as RADIUS or SAML 2.0, are they Cloud-based or on-prem? One size does not fit all and this process will help do determine where the most security value can be achieved the quickest.

Ease of use and acceptance

Lastly, but perhaps most importantly, you need to think about your users and how the change will impact them, no matter how small. Moving away from passwords will most likely be welcomed and will go some way to ease any impending disruption. The ongoing user experience is crucial and this is where simplicity is key. Complexity will undoubtedly lead to pushback from users user, business inefficiencies and higher helpdesk costs.

Contact us to find out how cost-effective deviceless authentication can help you