You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

Multi-Factor Authentication

Recently, a Verizon Data Breach Investigative Report revealed that 81% of data breaches resulted from weak or stolen credentials, highlighting the vulnerability of passwords. Multi-Factor Authentication (MFA) is a proven method to verify user identity, balancing security with usability. Implement MFA across all entry points, such as web, VPN, and mobile apps, with user-friendly options like one-time passwords, FIDO/Yubikey tokens, 3rd parties like DUO, or the EmpowerID Mobile app. Benefits of EmpowerID MFA include:

Adaptive MFA tailors security measures to individual situations, requiring additional authentication only when necessary. Factors analyzed include the user's device, location, network access, geolocation, velocity, application access, roles, and risk score. EmpowerID intelligently determines when extra steps are needed to confirm user identity.

Eliminate the need for passwords with various secure authentication methods, including FIDO2 keys, virtual and hardware tokens, and mobile authenticators. EmpowerID analyzes login context to determine the required factors, making passwordless login both intelligent and adaptable.

The EmpowerID Mobile Authenticator enables MFA on major mobile platforms with a single click. Increase user adoption with the convenience of push notifications during the login process. The EmpowerID Mobile Authenticator, with simple installation and enrollment, is available in Apple and Android app stores.

EmpowerID's integrated RADIUS Server provides strong authentication for firewalls, network devices, and VPN servers. Analyze user logins with context-driven policies and enforce adaptive MFA rules, ensuring a secure network. The EmpowerID LDAP Virtual Directory is also available for organizations preferring LDAP over RADIUS.

Â