User Profile
tfrain
Copper Contributor
Joined 2 years ago
User Widgets
Recent Discussions
Re: MFA without a Cellphone
Leapfrog_1-3 The whole goal of this is confirming you are you through something you are (biometric), something you have (a phone or RSA type card), or something you know (unique information only you have knowledge of). Unfortunately, the "something you know" is already taken up by your password. So if you have ANOTHER password, it would just be a duplicate of the same FACTOR - something you know - like a secondary password. Hence the problem. I absolutely hate having to deal with it, but I do understand the reason for it.5.7KViews0likes1CommentRe: MFA without a Cellphone
webapt - go to amazon and look for - Token2 miniOTP-2-i programmable Two-Factor Security Token with time sync these worked great for us. Super easy. You just have to get the token2 NFC burner app on your phone. It basically reflashes the card to behave as an authenticator app.7.9KViews0likes0CommentsRe: MFA without a Cellphone
acjohns1986 Seriously, buy one of the token2 token cards on amazon and give that a try. It worked great for us. It's like $40 and if it doesn't work you aren't out that much, but i'm pretty sure it will work. That was our workaround for this type of situation.8.8KViews0likes2CommentsRe: MFA without a Cellphone
I used a Token2 physical token (from a company in Switzerland) that essentially mimics a secondary Auth App (like google authenticator). When prompted for 2FA, you select alternate authenticator, you scan the QR code into their app, hold the token close to your cell phone and it basically transfers hash to the physical token. We did not have to upgrade our Azure accts to P1 or P2 because to Azure, you are using Google Authenticator and the like. Worked great for a user on the floor who didn't have a desk phone for office phone auth, and we don't allow cell phones on the production floor. Was quick and easy. You can Google Token2. There is at least one party who has them on Amazon. Only issue is when the user is prompted, it tells them to put in their Auth App code. You just explain to them that it is asking for the number on the token, not something on their phone.11KViews0likes2Comments
Groups
Recent Blog Articles
No content to show