Mfa for windows login5/25/2023 In this scenario, what would be the mitigation? I'm thinking a push to WHfB would help, but then the argument will be "Oh well, what happens when a user has their PIN stuck to the bottom of their laptop.". Obviously, this is an issue in itself, but not an impossible scenario. Right click on Network and choose Map network drive You will see the following screen. Now, Login to Windows EC2 instance.Open the File Explorer. Of course the login is successful, but they don't get prompted for MFA (by design).ĭespite me showing them that MFA is satisfied when investigating the sign-in logs, they argue that is is not secure, their argument being "What is someone's laptop is stolen and they have their username/password stuck at the bottom? How will this MFA then help secure them?". Click the File system ID and choose Attach You can find the mounting instructions for different services, Also you can find the DNS name there. They don't have WHfB, so they log in with a username/password. The devices they are using is AAD joined and Intune-managed, which means that MFA is satisfied quietly. They are currently using RSA and Citrix, and used to providing an OTP to log in. I'm working with a customer who insists on having an MFA prompt when accessing M365 resources (Outlook, SharePoint, OneDrive.).
0 Comments
Leave a Reply. |