Forum Discussion
Enabling MFA on admin level access to On premise AD
Hello everyone. I've run into a puzzler and I'm hoping someone can give me a tip on how to solve this. I have received a "cyber security attestation" document from a major insurance provider and must...
As I said here, the only option I investigated thoroughly enough to complete a POC is the one I personally chose, which is Authlite. Most people who answered this question didn't understand the difference between putting MFA on a Domain Controller at log in (not at all the requirement) vs putting MFA on administrative access to AD and all it's component tools. So since the question is frequently misunderstood, your mileage may vary on if these are viable answers or not. Here are a couple of other ones that were suggested to me, in no particular order:
isdecisions UserLock
Secret Double Octopus
WiKID
Good Luck in your journey.
Hello, please check if this can be an alternative to third party tools.
I think this procedure is able to "putting MFA on administrative access to AD and all it's component tools." w/o using third party tool (AFAIK, basically authlite solution is similar to what I hipotized and properly tested )
https://techcommunity.microsoft.com/t5/security-compliance-and-identity/how-to-enabling-mfa-for-active-directory-domain-admins-with/m-p/2803878
I think this procedure is able to "putting MFA on administrative access to AD and all it's component tools." w/o using third party tool (AFAIK, basically authlite solution is similar to what I hipotized and properly tested )
https://techcommunity.microsoft.com/t5/security-compliance-and-identity/how-to-enabling-mfa-for-active-directory-domain-admins-with/m-p/2803878