Permissions for users and two-factor authentication are an essential part of a robust security system. They reduce the risk of malicious or accidental insider threats, limit the impact of data breaches, and ensure compliance with regulatory requirements.
Two-factor authentication (2FA) requires users to enter credentials from two different categories to be able to log into an account. It could be something the user is familiar with (passwords PIN codes, passwords or security questions), something they possess (one-time verification code that is sent to their phone or an authenticator app) or something they are (fingerprints or a face scan, or retinal scan).
2FA is often a subset to Multi-Factor Authentication which includes more than two factors. MFA is often a requirement in certain industries, like healthcare (because of the strict HIPAA regulations), ecommerce, and banking. The COVID-19 epidemic has also heightened the urgency of security for companies that require two-factor authentication.
Enterprises are living beings and their security infrastructures are constantly evolving. Users change roles and capabilities of hardware are changing, and complex systems are accessible to users. It’s important to regularly reevaluate your two-factor authentication process at regular intervals to ensure that it keeps pace with these changes. One way to do this is to use adaptive authentication, which is a type of contextual authentication that will trigger policies based on how it is used, when and when a login request comes in. Duo provides a central administrator dashboard that allows you to easily manage and set these types of policies.