Becoming aware of user permissions and two factor here are the findings authentication is essential to protect from new cyber threats. The digital landscape is always changing, and cybercriminals are always one step ahead. To stay secure, organizations should implement centralized user identity and access management (IAM) solutions that can be used in conjunction with better user education to enhance overall security.
Typically, 2FA is implemented by having users use an authenticator application on their own devices. This ensures that only the user’s device is used to sign in to HubSpot, reducing the risk of stolen or lost credentials.
Duo Security, for example, an example of a 2FA system acquired by Cisco in the year 2018 offers mobile device support to its customers. The platform used by the company utilizes FIDO and Web Authentication API (WebAuthn) standards to allow mobile device verification through tapping into built-in capabilities in iOS, Android and Windows phones. This is a simple way for users of mobile devices to verify their identity without having to rely on IT professionals to update apps or alter settings. It can also stop them from accidentally bypassing the security measures.
Other methods of implementing 2FA include requiring that it be enabled in certain geographic locations, using network information to verify the location of users and blocking authentication attempts from suspicious networks such as Tor proxy servers, proxies or VPNs. These policies can also be created and enforced by the IAM solution’s administrator dashboard.
Additionally it is important to be aware that the process of implementing and deploying 2FA will take some time. It is a good idea to speed up the process by using an IAM solution that allows users to turn off 2FA if they aren’t in a position to use their authenticator app.