Two-Factor or Multi-Factor Authentication
The chances are you have heard or seen the term multi-factor authentication. What is it exactly? Simply put, multi-factor authentication (MFA) or Two-factor (2FA) is an additional security layer through which access is granted after successfully presenting two or more pieces of evidence to authenticate and grant user access to a resource.
As of this writing the popular measure called two-factor authentication, is becoming popular amount services like Office 365, G Suite, iCloud, online banking, etc. employing unique codes are that constantly changing.
How it works?
This method traditionally consists of the three factors:
- something you know – username/password or code,
- Something you have – a mobile device or dongle registered to receive unique authentication codes,
- Something you are – fingerprint, eye iris.
Implementing two-factor authentication requires two of these three components to authenticate to a given system.
Once enabled, multi-factor authentication prompts you generally to provide a mobile phone number or to use an app. Most forms of two-factor authentication ask you to sign in with your user name and password, and then enter a code that is sent to you via text message (SMS).
How effective is MFA?
MFA or two-factor authentication enhances protection of confidential, personal or otherwise sensitive data. Given the prevalence of single sign-on (SSO) utilized by many cloud services, think how much information a hacker would have access to if they were able compromise your accounts.
Although it may appear like such a nuisance initially, users get accustomed to it eventually. It becomes a habit, a second nature, just as locking your car or house so intruders don’t get inside and steal your possessions.
If you have any questions about setting up and enforcing MFA or Two-Factor Authentication for your organization, let us know.
We’ve implemented MFA for Office 365 and G Suite successfully for our clients and can guide you around the usual pitfalls.