Multi-Factor Authentication (MFA)
The number one attack vector to a hacked network is a compromised identity. Hackers know that the right set of credentials are the keys to the virtual kingdom. Organizations have used a number of techniques to help make a compromised set of credentials less valuable. Password rotation, password managers, and training users to have different passwords per login are all techniques that IT teams have leveraged. While some of these approaches have made a difference, they all rely on the user to work well and therein lies the problem. To keep your systems secure, you need to make your user’s life much harder. They need to potentially remember more passwords, hassle with password managers, and take extra time connecting to the resources they need.
Enter multifactor authentication. Also known as MFA, two-factor authentication (2FA), or strong authentication, multifactor authentication requires the user to provide two factors to gain entry to a resource. The first factor is generally a password or something that the user knows. The second factor is often something that the user possesses such as a token with a randomized number generator. The user then is required to login with the password and the token. As a result, a hacker that has compromised a user’s password cannot login as they must also possess the other factor, and that is with the user. MFA is widely viewed as a significant stepup over just passwords and is now widely used to access a variety of sites. In fact, JumpCloud suggests that organizations leverage MFA capabilities for access to such services as email, cloud server hosting, and others.
JumpCloud views multifactor authentication as a core part of Directory-as-a-Service®. A cloud-based directory service provides access and authorization into various IT resources such as systems, applications, and networks. JumpCloud supports MFA through Google Authenticator as a second factor for access to core parts of its platform. Access to the admin and user consoles can be enabled with MFA. And, as importantly, a user’s core device platform – their Mac or Linux system – can be MFA enabled. A lost Mac laptop no longer represents the same level of risk with MFA enabled as without it. Your Linux cloud servers at AWS or elsewhere can be secured with JumpCloud’s MFA capabilities.
Organizations should not rely on just strong passwords as their method of security. Adding a multi-factor authentication as a core part of their identity and access control program is a requirement today. JumpCloud’s MFA capabilities lock down your systems and access to the JumpCloud portal.
- MFA for JumpCloud User Portal access
- MFA for JumpCloud Admin Console access
- MFA for Mac OS X access
- MFA for Linux Server access
- MFA for Windows (coming soon!)
- Google Authenticator integration with iOS and Android apps
- Increases security for applications accessed by the JumpCloud user portal
- Administrative access to the JumpCloud portal is tightly controlled
- Significant stepup in device level security
- No extra costs for tokens or MFA software
- Simple to operate from iOS and Android smartphones your users have