{"id":49180,"date":"2021-02-11T11:00:00","date_gmt":"2021-02-11T16:00:00","guid":{"rendered":"https:\/\/live-jc-marketing-site.pantheonsite.io\/?p=49180"},"modified":"2023-01-26T13:22:11","modified_gmt":"2023-01-26T18:22:11","slug":"what-is-multi-factor-authentication-and-why-should-you-use-it","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it","title":{"rendered":"Multi-Factor Authentication: What Is It and Why Should You Use It?"},"content":{"rendered":"\n<p>There are more online user accounts per person than ever before, and all of those user accounts translate to more opportunities for account compromise. <\/p>\n\n\n\n<p>Unfortunately, even if the accounts are personal, they still pose a risk to your organization due to <a href=\"https:\/\/jumpcloud.com\/blog\/password-reuse-and-rotation\">password reuse<\/a>, which stems from the difficulties the average end user faces when asked to create multiple, unique and complex passwords for their (likely) hundreds of online personal and professional accounts. In short, every one of these online accounts can cause significant security issues for IT admins.&nbsp;<\/p>\n\n\n\n<p>However, there are ways to protect accounts from weak, reused, or irresponsibly managed passwords, and one method in particular has gained considerable popularity across B2B <em>and <\/em>B2C accounts: <strong>multi-factor authentication<\/strong> (<a href=\"https:\/\/jumpcloud.com\/platform\/multi-factor-authentication-mfa\">MFA)<\/a>, or also known as two-factor authentication \/ <a href=\"https:\/\/jumpcloud.com\/blog\/beginners-guide-2fa\">2FA<\/a>)<strong>.<\/strong> <\/p>\n\n\n\n<p>This seemingly simple solution protects online resources better than even the most complex of passwords, but what exactly is multi-factor authentication? And how does it work, both from an IT admin\u2019s and end user\u2019s perspective?<\/p>\n\n\n\n<p>After reading this three-part series, you\u2019ll have an understanding of what is multi-factor authentication, why it\u2019s needed, how it works, and how to implement it for any combination of onsite employees and remote employees.<\/p>\n\n\n\n<figure class=\"image is-16by9\">\n<iframe class=\"has-ratio\" width=\"300\" height=\"315\" src=\"https:\/\/www.youtube.com\/embed\/6721eElca5k?rel=0\" frameborder=\"0\" allow=\"accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture\" allowfullscreen=\"\"><\/iframe>\n<\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">What is Multi-Factor Authentication?<\/h2>\n\n\n\n<p>Often referred to as <em>two-factor authentication<\/em> (or 2FA), multi-factor authentication is a critical and vital tool in the fight against identity theft and unauthorized access to company resources. <\/p>\n\n\n\n<p>Multi-factor authentication (or MFA for short), adds a second or third (or more) factor to the login process for company resources (apps, services, servers, etc.).<\/p>\n\n\n\n<p>Think of the most common <a href=\"https:\/\/jumpcloud.com\/blog\/different-factors-of-multi-factor-authentication-mfa\">MFA factors<\/a> for validating a person\u2019s identity as the following:<\/p>\n\n\n\n<ul>\n<li><strong>Something that you are<\/strong>: perhaps most foundational is identifying you by something you are. Ideally these are unique and non-changing attributes such as a fingerprint, face picture, retinal imprint, or even your speech or typing patterns. These are widely believed to be the most secure factor, but also difficult to operationalize, and then, of course, there are significant privacy concerns.<\/li>\n\n\n\n<li><strong>Something that you know<\/strong>: this is unique knowledge to a person including such items as passwords, facts about your life, family history, and more. Historically, this is the most common form of online identification. It was easy to implement, store, and operationalize.<\/li>\n\n\n\n<li><strong>Something that you have<\/strong>: an increasingly popular form of identification is to validate identity based on something that only the person may have. This could include a certificate or key (private key for example when discussing SSH key pairs). From a multi-factor authentication perspective this was popularized through a key fob that generated a token (pin or series of numbers). Today, something that you have can include your mobile phone.<\/li>\n<\/ul>\n\n\n\n<p>Historically the most common online factor of user identification has been the password. As online security has become much more critical, IT experts have long advocated for strengthening that single factor as well as adding other factors to identify a person. <\/p>\n\n\n\n<p>In addition to using their password (which is the most popular first factor of authentication, often considered \u201csomething you know\u201d), users must now have something <em>else<\/em> they enter or use to validate who they are; this often constitutes either \u201csomething you have\u201d or \u201csomething you are\u201d since these two factors are extremely difficult to spoof or access remotely as criminal hackers often need.<\/p>\n\n\n\n<p>For example, a common MFA approach generates a token or code from a smartphone via an app such as Google Authenticator (ie something you have). The code is a randomly generated number tied to the system or application that the user is logging into. <\/p>\n\n\n\n<p>Another similar method is called \u201cpush\u201d where instead of entering a code or token from the smartphone, the user simply pushes a button to acknowledge the second factor check. <\/p>\n\n\n\n<p>There are a number of different techniques to generate a \u201csecond factor\u201d, which are discussed later in this series. As interesting, many of these second factors are now being looked at for becoming combined first and second factors to create a passwordless experience for end users.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">History of Multi-Factor Authentication<\/h2>\n\n\n\n<p>The first concept of a <a href=\"https:\/\/en.wikipedia.org\/wiki\/Lock_and_key\" target=\"_blank\" rel=\"noreferrer noopener\">factored authentication system<\/a> can actually be traced back to the Egyptians, who used a wooden pin lock to bar access to specific structures. When the key was inserted, pins hidden inside the fixture would lift out of drilled holes, allowing it to move. This is very similar to the current iteration of the lock and key, except it is now made with metals to be more durable.<\/p>\n\n\n\n<p>By 1985, <a href=\"https:\/\/www.ecpi.edu\/blog\/amazing-facts-2-factor-authentication\" target=\"_blank\" rel=\"noreferrer noopener\">Kenneth Weiss<\/a>, who founded Security Dynamics in 1984, invented and patented \u201can apparatus for the electronic generation and comparison of non-predictable codes.\u201d His invention sparked the first concept of what came to be known as multi-factor authentication. <\/p>\n\n\n\n<p>Almost a decade later, he initiated the purchase of RSA Security, then a small encryption company working within the burgeoning ecommerce space. The SecureID product, built upon the RSA encryption algorithm developed by the founders of RSA Security, became one of the first enterprise-focused multi-factor authentication products and dominated for years.&nbsp;<\/p>\n\n\n\n<p>While tokens, key fobs, and other <a href=\"https:\/\/jumpcloud.com\/blog\/hardware-mfa-benefits\">MFA devices<\/a> still exist, smartphones have since made it possible for users to authenticate their identities from virtually any location, keep their accounts more secure, and more easily log into accounts.<\/p>\n\n\n\n<p> Although organizations initially used multi-factor authentication for financial transactions or in highly secure situations, they\u2019ve started to administer multi-factor authentication for both customer and employee user identities, independent of the purpose of the application in question, to keep valuable information secure. <\/p>\n\n\n\n<p>The evolution of multi-factor authentication has allowed IT admins to keep sensitive data away from hackers\u2019 encroaching threat while becoming a natural part of the login process for end users.<\/p>\n\n\n\n<div class=\"promotion-banner-small is-flex-direction-column has-items-aligned-flex-start has-items-aligned-center-tablet\">\n    <div class=\"promo-small-image is-hidden-mobile\">\n        <img decoding=\"async\" src=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/02\/Hyper-Secure-with-SSO-MFA-aspect-ratio-160x110-1.png\" alt=\"JumpCloud\">\n    <\/div>\n    <div class=\"promo-small-content\">\n        <p class=\"is-type-body-tiny is-type-weight-bold is-important promo-small-title\">\n            Layer MFA Everywhere        <\/p>\n        <p class=\"is-type-body-default is-important\">\n            Safeguard user access to applications, devices, networks, and more        <\/p>\n    <\/div>\n    <div class=\"promo-small-cta\">\n        <a href=\"https:\/\/jumpcloud.com\/platform\/multi-factor-authentication-mfa\" data-promo=\"MFA\" class=\"button is-primary-green promo-small-banner-link\">Learn How<\/a>\n    <\/div>\n<\/div>\n\n\n\n\n<h2 class=\"wp-block-heading\">Why is Multi-Factor Authentication Needed?<\/h2>\n\n\n\n<p>When you allow a single set of credentials to play the only role in authentication, one compromised set is all an attacker needs to steal or manipulate company data. This is especially true if the account in question is a key account such as your email account that underpins many of your other accounts. <\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Inherent Weaknesses of Relying on Passwords<\/h3>\n\n\n\n<p>Individual passwords are simply not strong enough on their own to protect your company\u2019s data and should never be enough for your most critical accounts such as email, banking, and more. Here are a few statistics as to why multi-factor authentication is so vital for safeguarding company resources:&nbsp;<\/p>\n\n\n\n<ul>\n<li><a href=\"https:\/\/www.skyhighnetworks.com\/cloud-security-blog\/5-key-findings-from-2019-cloud-adoption-and-risk-report\/\" target=\"_blank\" rel=\"noreferrer noopener\">92% of organizations<\/a> have credentials for sale on the Dark Web<\/li>\n\n\n\n<li><a href=\"https:\/\/lp-cdn.lastpass.com\/lporcamedia\/document-library\/lastpass\/pdf\/en\/LastPass-Enterprise-The-Password-Expose-Ebook-v2.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">61% of people<\/a> reuse the same or similar password everywhere<\/li>\n\n\n\n<li>\u201c123456\u201d and \u201cpassword\u201d were the <a href=\"https:\/\/www.welivesecurity.com\/2018\/12\/17\/most-popular-passwords-2018-revealed\/\" target=\"_blank\" rel=\"noreferrer noopener\">top two password choices<\/a> in 2018<\/li>\n\n\n\n<li><a href=\"https:\/\/enterprise.verizon.com\/content\/dam\/resources\/reports\/2017\/2017_dbir.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">81% of data breaches<\/a> have been the result of weak or stolen passwords<\/li>\n<\/ul>\n\n\n\n<p>Ultimately, there are two paths for IT departments to solve this issue. One is to train your users to leverage unique passwords on each site and use lengthy (and possibly complex) passwords, but implementing this strategy is difficult, and requires a lot of trust to be placed with your users. <\/p>\n\n\n\n<p>Many users will comply, but some will not, and those that don\u2019t become the weakest link to your organization\u2019s IT network. <\/p>\n\n\n\n<p>Having good password hygiene is a critical security training item no matter what, but many IT admins cannot just rely on their users.<\/p>\n\n\n\n<p> And, to be fair, even if your end users do everything right, a breach on a key third party site still may render your passwords compromised &#8211; with no fault of your end users.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How MFA Bolsters the Security of Passwords<\/h2>\n\n\n\n<p>Adding a second factor makes it much significantly harder for malcontents to cause damage, since attackers now must have two objects in their possession to move forward with their actions.<\/p>\n\n\n\n<p> And, <a href=\"https:\/\/jumpcloud.com\/blog\/evaluating-the-accessibility-of-different-mfa-factors\">accessible MFA<\/a> is becoming more ubiquitous, which creates less friction with end users. This makes multi-factor authentication attractive for organizations looking to boost their security policies without creating much additional overhead.&nbsp;<\/p>\n\n\n\n<p>One other key point to add &#8211; many end users are now concerned about their online security and what it can mean to them, which means they are motivated to protect themselves and their accounts.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What are the Pros and Cons of Multi-Factor Authentication?<\/h2>\n\n\n\n<p>Multi-factor authentication isn\u2019t perfect, as it requires additional overhead with user onboarding and system administration, so let\u2019s consider the pros and cons of multi-factor authentication.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Pros of Using Multi-Factor Authentication&nbsp;<\/h3>\n\n\n\n<ul>\n<li><strong>Protects sensitive information<\/strong>: Users are the number one risk point for a network, so multi-factor authentication relieves user and IT admin anxiety by protecting data from falling into the hands of relentless hackers.&nbsp;<\/li>\n\n\n\n<li><strong>Almost always secure<\/strong>: If a hacker has somehow acquired a user\u2019s password to a system, they cannot gain access, as they do not have the second factor (which is generally in the user\u2019s possession or something that they are).<\/li>\n\n\n\n<li><strong>Don\u2019t lose sleep over lost devices<\/strong>: <a href=\"https:\/\/jumpcloud.com\/blog\/differences-system-based-mfa-and-application-level-mfa\">Device-based multi-factor authentication<\/a> (and paired with <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-full-disk-encryption-fde\">full-disk encryption<\/a>) ensures that lost devices do not lead to compromised access or data.&nbsp;<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Cons of Using Multi-Factor Authentication<\/h3>\n\n\n\n<ul>\n<li><strong>Added friction<\/strong>: If you don\u2019t have access to the device or system to receive your second factor, and haven\u2019t set up backup resources for authenticating user access, you cannot be granted access to a particular application or system.&nbsp;<\/li>\n\n\n\n<li><strong>Can be expensive<\/strong>: Traditionally, multi-factor authentication can be quite expensive if an organization uses a solution that requires on-prem hardware and has to integrate with existing identity solutions.<\/li>\n\n\n\n<li><strong>Time-consuming<\/strong>: The time needed to log in to your system and verify using a mobile device or token can be inconvenient.<\/li>\n\n\n\n<li><strong>Inconsistencies<\/strong>: It is hard to implement multi-factor authentication across an entire organization, as it is often left up to the users to implement it fully. IT admins may not always have insight into an organization\u2019s use of multi-factor authentication.<\/li>\n<\/ul>\n\n\n\n<p>When deployed correctly, <a href=\"https:\/\/jumpcloud.com\/blog\/the-human-challenges-of-rolling-out-multi-factor-authentication-mfa\">implementing multi-factor authentication<\/a> can significantly benefit IT security without adding much burden to the end-user. <\/p>\n\n\n\n<hr>\n\n\n\n<h2 class=\"wp-block-heading\">Evaluate JumpCloud Free Today<\/h2>\n\n\n\n<p>If you\u2019re new to JumpCloud and interested in learning more about the platform and how to achieve stronger security practices,&nbsp;<a href=\"https:\/\/console.jumpcloud.com\/signup\" target=\"_blank\" rel=\"noreferrer noopener\">evaluate JumpCloud today<\/a>! <\/p>\n\n\n\n<p>JumpCloud Free grants new admins 10 systems and 10 users free to help evaluate with access to the complete platform. Once you\u2019ve created your organization, you\u2019re also given 10 days of Premium 24\u00d77 in-app chat support to help you with any questions or issues if they arise.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.<\/p>\n","protected":false},"author":120,"featured_media":46030,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[2781],"tags":[],"collection":[2775],"platform":[],"funnel_stage":[3016],"coauthors":[2537],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What Is Multi-Factor Authentication (MFA)?<\/title>\n<meta name=\"description\" content=\"What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Multi-Factor Authentication: What Is It and Why Should You Use It?\" \/>\n<meta property=\"og:description\" content=\"What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2021-02-11T16:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-01-26T18:22:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"534\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sean Blanton\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sean Blanton\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\"},\"author\":{\"name\":\"Sean Blanton\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3\"},\"headline\":\"Multi-Factor Authentication: What Is It and Why Should You Use It?\",\"datePublished\":\"2021-02-11T16:00:00+00:00\",\"dateModified\":\"2023-01-26T18:22:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\"},\"wordCount\":1722,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg\",\"articleSection\":[\"How-To\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\",\"url\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\",\"name\":\"What Is Multi-Factor Authentication (MFA)?\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg\",\"datePublished\":\"2021-02-11T16:00:00+00:00\",\"dateModified\":\"2023-01-26T18:22:11+00:00\",\"description\":\"What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg\",\"width\":780,\"height\":534},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Multi-Factor Authentication: What Is It and Why Should You Use It?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3\",\"name\":\"Sean Blanton\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/0f493278829cf832b6cf8a58926a4585\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g\",\"caption\":\"Sean Blanton\"},\"description\":\"Sean Blanton is the Director of Content at JumpCloud and has spent the past decade in the wide world of security, networking and IT and Infosec administration. When not at work Sean enjoys spending time with his young kids and geeking out on table top games.\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"What Is Multi-Factor Authentication (MFA)?","description":"What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it","og_locale":"en_US","og_type":"article","og_title":"Multi-Factor Authentication: What Is It and Why Should You Use It?","og_description":"What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.","og_url":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it","og_site_name":"JumpCloud","article_published_time":"2021-02-11T16:00:00+00:00","article_modified_time":"2023-01-26T18:22:11+00:00","og_image":[{"width":780,"height":534,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg","type":"image\/jpeg"}],"author":"Sean Blanton","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Sean Blanton","Est. reading time":"8 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it"},"author":{"name":"Sean Blanton","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3"},"headline":"Multi-Factor Authentication: What Is It and Why Should You Use It?","datePublished":"2021-02-11T16:00:00+00:00","dateModified":"2023-01-26T18:22:11+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it"},"wordCount":1722,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg","articleSection":["How-To"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it","url":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it","name":"What Is Multi-Factor Authentication (MFA)?","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg","datePublished":"2021-02-11T16:00:00+00:00","dateModified":"2023-01-26T18:22:11+00:00","description":"What is multi-factor authentication (MFA) and how does it work in practice for IT professionals and end users? Learn more about MFA fundamentals here.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/05\/set-mfa-remote-employees.jpg","width":780,"height":534},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/what-is-multi-factor-authentication-and-why-should-you-use-it#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Multi-Factor Authentication: What Is It and Why Should You Use It?"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/0c2a749d55fd9ade81d9f810c8d5aaa3","name":"Sean Blanton","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/0f493278829cf832b6cf8a58926a4585","url":"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/596d142d20c23a1783684d7960968d4e?s=96&d=mm&r=g","caption":"Sean Blanton"},"description":"Sean Blanton is the Director of Content at JumpCloud and has spent the past decade in the wide world of security, networking and IT and Infosec administration. When not at work Sean enjoys spending time with his young kids and geeking out on table top games."}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/49180"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/120"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=49180"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/49180\/revisions"}],"predecessor-version":[{"id":74207,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/49180\/revisions\/74207"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/46030"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=49180"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=49180"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=49180"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=49180"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=49180"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=49180"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=49180"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}