Difference between revisions of "Multi-factor authentication (MFA)"
Jump to navigation
Jump to search
Tags: Mobile web edit, Mobile edit |
|||
(35 intermediate revisions by 5 users not shown) | |||
Line 6: | Line 6: | ||
* [[Certificates]] | * [[Certificates]] | ||
* [[Smart cards]] | * [[Smart cards]] | ||
+ | * [[Virtual MFA Applications]] | ||
+ | * [[Mobile push notifications]] | ||
+ | * [[Google prompts]] | ||
− | == 2FA | + | == [[2FA applications]] == |
Different 2FA open-source mobile app are available such us : | Different 2FA open-source mobile app are available such us : | ||
− | + | {{2FA apps TOC}} | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
== Activities == | == Activities == | ||
* Read https://www.digitalocean.com/community/tutorials/how-to-set-up-multi-factor-authentication-for-ssh-on-ubuntu-16-04 ([[OATH-TOTP]]) | * Read https://www.digitalocean.com/community/tutorials/how-to-set-up-multi-factor-authentication-for-ssh-on-ubuntu-16-04 ([[OATH-TOTP]]) | ||
+ | * Read [[wikipedia:Help:Two-factor_authentication]] | ||
+ | |||
+ | == Related == | ||
+ | * [[VMware Verify]] | ||
+ | * <code>[[aws sts get-session-token]]</code> | ||
+ | * [[OpenVPN Connect]] | ||
+ | * <code>[[iam:GetAccountPasswordPolicy]]</code> | ||
+ | * [[Virtual keyboard]] | ||
+ | * [[2FA with more than one device]] | ||
+ | * [[Configure MFA on AWS]] | ||
+ | * [[Yubikey]]: <code>[[ykman]]</code> | ||
+ | * <code>[[aws_s3_versioning]]</code> | ||
== See also == | == See also == | ||
− | * | + | * {{aws iam mfa}} |
* {{VPN}} | * {{VPN}} | ||
* {{MFA}} | * {{MFA}} | ||
− | * {{ | + | * {{AAA}} |
[[Category:IT Security]] | [[Category:IT Security]] | ||
+ | [[Category:MFA]] |
Latest revision as of 04:35, 11 July 2024
wikipedia:Multi-factor authentication (MFA) is a method of computer access control which a user can pass by successfully presenting several separate authentication stages through credentials based on knowledge (something you know), possession (something you have), and inherence (something you are), in other words, it is a system that requires more than one method of authentication from a self-reliant listing of credentials to verify a user's identity for login.
Examples[edit]
- Bank card + PIN number
- One-time password (OTP) tokens
- Certificates
- Smart cards
- Virtual MFA Applications
- Mobile push notifications
- Google prompts
2FA applications[edit]
Different 2FA open-source mobile app are available such us :
- FreeOTP (2013, Android, iOS): free and open-source
- AndOTP (Android)
- Google Authenticator (2010, Android, iOS)
- Microsoft Authenticator (2016)
- MobileID, deepnet security
- Authy
- Cisco Duo Mobile
- LinOTP
- LastPass
- Okta Verify
- Duo Security
- LastPass Authenticator mobile app
- JumpCloud protect
- PingID
- Zoho OneAuth
Activities[edit]
- Read https://www.digitalocean.com/community/tutorials/how-to-set-up-multi-factor-authentication-for-ssh-on-ubuntu-16-04 (OATH-TOTP)
- Read wikipedia:Help:Two-factor_authentication
Related[edit]
- VMware Verify
aws sts get-session-token
- OpenVPN Connect
iam:GetAccountPasswordPolicy
- Virtual keyboard
- 2FA with more than one device
- Configure MFA on AWS
- Yubikey:
ykman
aws_s3_versioning
See also[edit]
- AWS MFA:
list-virtual-mfa-devices
|create-virtual-mfa-device
|deactivate-mfa-device
|delete-virtual-mfa-device
|enable-mfa-device
|list-mfa-device-tags
|list-mfa-devices
|list-virtual-mfa-devices
|resync-mfa-device
|tag-mfa-device
|untag-mfa-device
- VPN: IPsec (Openswan), OpenVPN, Forticlient, GlobalProtect (PAN-OS), WireGuard (Linux Kernel), Tailscale, PulseSecure, WebVPN, SoftEther, ESP, IKE, AWS VPN, Zerotier, VPN client, Pritunl, GCP Cloud VPN, Mesh virtual private network, Mullvad
- MFA: FreeOTP, Google Authenticator, Okta Verify, Duo Security, Microsoft Authenticator, Strong customer authentication, Dualshield, HOTP, TOTP, OATH, Authy, Push authentication, google-authenticator, Duo Mobile,
DenyAllExceptListedIfNoMFA
, Configure MFA on AWS, LastPass Authenticator mobile app - AAA: Authc, Authz, Password policy, OAuth, OpenID, OIDC, LDAP, RADIUS, TACACS+, XTACACS, SAML, Secure LDAP, IEEE 802.1X, CHAP, RBAC, MFA, SCIM, Amazon Cognito
Advertising: