Two-factor authentication, or 2FA as it's commonly abbreviated, adds an extra step to your basic log-in procedure. Without 2FA, you enter in your username and password to log into any service. The password is your single factor of authentication. The second factor makes your account more secure. The default for all user logons whether local or remote has always been reliant upon the humble password. In our modern connected world, Password is now the weakest link as passwords are easily stolen, either electronically or by social engineering techniques. Passwords are also easily guessable. Most often passwords are shared with colleagues and when they leave the organisation, these are not changed.
Windows Store: Authenticator
Why two-factor authentication?
Two-factor authentication is one of the best ways to protect against remote attacks such as phishing, credential exploitation and other attempts to takeover your accounts. Without your physical device, remote attackers can’t pretend to be you in order to gain unauthorized access to corporate networks, cloud storage, financial information, etc. By leveraging something the user already has, allows a seamless and cost effective solution for Two Factor authentication to be implemented.
Why GajShield web management requires 2FA?
Responsibility of your firewall is to ensure the safety of your organisation. It protects your data not only from outsiders, but also prevents data leaks from inside your network. Password makes this device very vulnerable to attack. Most often it has been found that administrators do not change the default password or the password that was originally set. Also, times, it is easy to guess the password. The added layer of two-factor authentication prevents unauthorised access to your firewall. It is easy to setup and implement for every account that is used to manage the firewall
What if I forget my mobile at home?
If you forget your mobile, GajShield firewall can send you a one-time-password on email. This can be used only once to log into your firewall.
What if I loose my mobile phone?
If you loose your mobile phone, you can send a one-time-password on email. You can reconfigure 2FA on your new mobile. The old OTP provided by firewall will no longer work.
Can I setup 2FA for all the accounts used to manage the firewall?
Yes, you can setup 2FA for each account separately. Each account will provide a different password on any given time and no account can use the password generated from 2FA setup for another account.
How do I configure two-factor authentication on GajShield Firewalls?
To configure two-factor authentication - click here