- Identity theft is the number #1 cause of compromised networks.
- MFA usually works by combining something the user knows with something they have (e.g. their phone).
- MFA is also called two-factor authentication, two-step verification, TFA, TFA, or 2FA.
There’s a reason why hackers go after identities: the right set of credentials are the keys to your digital kingdom. As a matter of fact, compromised identities are the number one attack vector to a hacked network. There have been a number of strategies employed to help make it harder to compromise credentials, like password rotation, password managers, and user training. These methods are an excellent first step towards making identities more secure. Fortunately there is an additional method that can be a step function increase in security.
This method is called Multi-Factor Authentication (MFA or often called 2FA or Two Factor Authentication). A fairly common tool now, it requires users to provide two factors in order to gain access to a resource. These two factors are typically a password (something that the end user knows), and a token or randomly generated number (something the end user has). Once both factors are inserted, only then will the user receive access. The benefit of this process is that even if a hacker is able to compromise a username/password combination, without the token (second factor) it is still impossible to get into the account. This process is widely regarded to be a major step up in security, and is employed en masse across a variety of resources.
With JumpCloud, MFA is a core part of our Directory-as-a-Service. Because we provide access and authorization to a multitude of IT resources, we support MFA for applications and even systems. This way, even if the physical laptop is stolen, without the MFA token the threat level is greatly reduced (add disk encryption and your stolen laptop may be worthless to a hacker).
Integrating MFA into your enterprise can be challenging if you’re doing it alone, but it’s seamlessly integrated into JumpCloud’s Directory-as-a-Service®. This allows for an easy method to significantly step your security up a notch. If you would like to try out JumpCloud’s MFA capabilities for yourself, click here to sign up for a free account. Alternatively, if you have any questions about how MFA can work for you feel free to contact us.