Mar 09 2021 12:51 PM
This is becoming a bigger issue more and more. We cannot, as a company, require our Employees to use a personal cellphone to get text codes or install work apps to authenticate our work accounts.
We supply these users with a Business Voice license so they can make business calls and accept business calls.
All of our employees have corporately paid laptops running Windows 10 and all have SharePoint, Email, OneDrive, Teams etc.
Microsoft does not offer the authenticator app on Windows 10 so we can't use that method.
So what do we do? Leave all these accounts vulnerable? I've read about using "landlines" for authentication then Microsoft says that's not secure but then provides no guidance on exactly how we're supposed to do this.
We cannot be expected to pay for a cellphone for all these users just to use one app. That's ridiculous.
Mar 09 2021 01:03 PM
Mar 09 2021 01:04 PM
Mar 09 2021 01:08 PM
Mar 09 2021 01:12 PM
Mar 09 2021 02:07 PM
Mar 09 2021 02:27 PM
Aug 13 2021 07:11 AM
Aug 16 2021 08:45 AM
Aug 16 2021 08:49 AM
Aug 18 2021 12:43 PM
Aug 18 2021 12:46 PM
Aug 18 2021 05:23 PM
That's why I suggested giving the option. I would think it would be ok for someone to opt to use their own phone? If so, then giving them a choice I would think the majority would opt to use their own?
Aug 19 2021 04:00 AM
We have the same problem here in germany. Employees couldn't be foreced to use their personal devices for MFA.
FIDO2 Sticks could be a possibile solution this problem. They are a lot cheaper than a smartphone.
Aug 21 2021 06:15 AM
Sep 09 2021 06:33 AM
I dont see that as a valid option. Yes people can use hybrid AD so the device you are on is a trusted device on a trusted IP so it wouldn't require the MFA while on premise. However you still want MFA to be registered so that would-be attackers outside are not able to register your MFA instead. You still need the end user to be able to register the MFA so others cannot. @Travis Roberts
Sep 16 2021 08:26 AM
Oct 09 2021 12:56 AM
@Matthew Shulmansorry, but on my private phone I don´t install any that belongs to my job. PRIVATE is PRIVATE
Nov 16 2021 07:26 AM
@ho_canarias Well, with MFA you aren't installing anything... All it's doing is sending a code to your phone when you go to log in to your work email. It's a standard security feature in many apps these days.
Nov 16 2021 07:33 AM