Multi-Factor Authentication

WHAT IS MULTI-FACTOR AUTHENTICATION?

Multi-Factor Authentication (MFA) is a security mechanism that enhances the authentication process by requiring the use of multiple authentication factors to verify a user’s identity before granting access to a system. These authentication factors are typically categorized into the following:

• Something you know: This refers to information that is known only to the user, such as a password, passphrase, or personal identification number (PIN).
• Something you have: This involves a physical or digital possession, such as a security token, smart card, or a digital certificate linked to the user or their device.
• Something you are: This pertains to inherent characteristics unique to the user, such as biometric data (e.g., fingerprint, facial recognition, or iris scan).

By requiring more than one of these factors, MFA significantly strengthens the security of authentication processes compared to the traditional reliance on a single factor, such as a password. This layered approach mitigates the risks associated with compromised credentials by ensuring that unauthorized access is not easily achieved.

OBJECTIVE

The primary objective is to ensure that all systems, applications, and methods of access that necessitate the use of MFA are properly enforcing this requirement, thereby ensuring a more secure authentication process and reducing the likelihood of unauthorized access.

DATA SOURCES

• Azure AD Sign-in
• HRDS
• Azure AD
• Ping One
• SAP Success Factors