Identity management simultaneously affects productivity and security in an organization. That can be a challenge for IT admins because striking a balance between productivity and security is not always the easiest balance to maintain. Additionally, the traditional username and password is no longer an adequate authentication method on it’s own. The good news is the identity management category multi-factor authentication (MFA) can significantly improve an IT organization’s security posture without costing users their productivity.
So, let’s take a look at why a username and password is no longer sufficient on its own.
Why Authentication is Weak with a Single Factor
Two decades ago, when Microsoft® Active Directory® was introduced, there wasn’t a driving need to ensure that there were multiple methods to authenticate and authorize a user. Hacking attacks were much different back then with much more focus on viruses and malware.
Today, though, there is a heightened awareness that credentials are perhaps the most valuable digital asset because they are a conduit to confidential information and systems. The right set of credentials are the electronic keys to the digital kingdom.
Not only have hackers changed their methods, but users have gained a reputation for favoring productivity and convenience over security. In other words, they don’t always make the best choices when it comes to their credentials. According to a report from TeleSign, 73% of online accounts are guarded by duplicated passwords and 54% of people use 5 or fewer passwords across their entire online life. To make things even worse, the top 5 most used passwords in 2017 were the following:
Clearly, IT admins have their work cut out for them when it comes to keeping their environment secure.
Increase Security with Multi-Factor Authentication
To help guide users toward making better choices, IT organizations have employed a couple tools. One of them is enforcing more stringent passwords by utilizing password complexity management solutions. This forces users to add in characters, numbers, and uppercase letters to strengthen their passwords or just lengthen them. However, one of the strongest defenses IT admins have (Read more...)
*** This is a Security Bloggers Network syndicated blog from Blog – JumpCloud authored by Natalie Bluhm. Read the original post at: https://jumpcloud.com/blog/identity-management-category-multi-factor-authentication/