Insurance form and MFA
-
A client sent me a cyber security insurance form and asked me to fill it out for them. One of the sections has to do with MFA of remote access which is something I feel is covered (ScreenConnect with one time passcode).
However, the next section mentions internal MFA and then lists active directory and firewalls. So I guess my question is does this sound like they want MFA when signing into the domain controller or firewall? I guess you could have a smart card or Yukikey for the domain controller. What would be an option for MFA on an edgerouter?
-
They mean signing into Active Directory, not the server (the server too, I'm sure.) Do your users have MFA when signing into their desktops?
-
@scottalanmiller said in Insurance form and MFA:
They mean signing into Active Directory, not the server (the server too, I'm sure.) Do your users have MFA when signing into their desktops?
No they don't have MFA for signing into the desktops.
They also mentioned MFA for routers. Not sure the edgerouter can do this.
-
@syko24 said in Insurance form and MFA:
@scottalanmiller said in Insurance form and MFA:
They mean signing into Active Directory, not the server (the server too, I'm sure.) Do your users have MFA when signing into their desktops?
No they don't have MFA for signing into the desktops.
They also mentioned MFA for routers. Not sure the edgerouter can do this.
They LIKELY mean for a VPN on the router, not for the login. But for login, you can do MFA if you only log in via SSH with certs.
