2019/08/06 Microsoft Cloud Solutions 552 visit(s)
With the announcement the public preview of for FIDO2-based passwordless sign-in, Microsoft is allowing thousands of enterprises using Azure Active Directory as their identity management platform to easily go passwordless.
As passwords are no longer an effective security method, this new support marks a significant step towards the future. After enterprises enable this feature, users can sign in using a FIDO2 security key, the Microsoft Authenticator app, or Windows Hello. Microsoft is now rolling out the following features in preview to its Azure AD customers:
Every day, more and more of our customers move to cloud services and applications. They need to know that the data and services stored in these services are secure. Unfortunately, passwords are no longer an effective security mechanism. We know from industry analysts that 81 percent of successful cyberattacks begin with a compromised username and password. Additionally, although traditional MFA is very effective, it can be hard to use sometimes.
It’s clear Microsoft needs to provide our customers with authentication options that are secure and easy to use, so they can confidently access information without having to worry about hackers taking over their accounts.
This is where passwordless authentication comes in. We believe it will help to significantly and permanently reduce the risk of account compromise.
Now, all Azure AD users can sign in password-free using a FIDO2 security key, the Microsoft Authenticator app, or Windows Hello. These strong authentication factors are based off the same world class, public key/private key encryption standards and protocols, which are protected by a biometric factor (fingerprint or facial recognition) or a PIN. Users apply the biometric factor or PIN to unlock the private key stored securely on the device. The key is then used to prove who the user and the device are to the service.
To help you get started on your own passwordless journey, this week Microsoft's rolling out a bonanza of public preview capabilities. These new features include:
Microsoft's passwordless strategy is a four-step approach where we deploy replacement offerings, reduce the password surface area, transition to passwordless deployment, and finally eliminate passwords:
Need any help throughout your journey of adapting a passwordless strategy? get in touch with Ctelecoms experts!
This blog was originally written by Alex Simons.