![]() ![]() The Identity Provider also stores security policies associated with each user.īy establishing a way for applications to communicate with a centralized identity provider you can enable authorized users can access multiple applications using a single set of credentials. Basically, the Identity Provider is a database that stores user identities as well as their related attributes. So, what’s the best, most cost-effective approach to implementing application-based, device agnostic, MFA? The answer is to leverage a Federated Identity Management (FIM) approach.įIM relies on the exchange of information between an application vendor – like your DMS vendor – and an Identity Provider like Microsoft Active Directory. As more and more applications move to the Cloud, application-based MFA is becoming an absolute necessity. At the application level – regardless of the device – MFA can be initiated to validate user identity before the user can gain access to application data. To best protect consumer data – which is what the FTC Safeguards Rule requires – you need to control access at the application level. However, it doesn’t address protecting access to cloud-based applications – like your DMS – from unknown, unprotected devices. ![]() This is fine to protect access to a specific device – like your laptop. ![]() This approach to MFA is one in which the MFA process is initiated based on the device that the user logs on to instead of the dealership’s user account properties and policy settings. ![]() To best understand how to do MFA the right way, let’s first discuss the device-based approach. The result is a lot of confusion, inefficiency, and quite frankly – a waste of money. Add to this that new government regulations – like the FTC Safeguards Rule – now requires that businesses implement MFA. As the incidence, severity, and sophistication of today’s cyber threats continues to grow, the appropriate use of multi-factor authentication (MFA) is becoming increasingly important. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |