2 factor on Windows Admin account in Active Directory

%3CLINGO-SUB%20id%3D%22lingo-sub-234690%22%20slang%3D%22en-US%22%3E2%20factor%20on%20Windows%20Admin%20account%20in%20Active%20Directory%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-234690%22%20slang%3D%22en-US%22%3E%3CP%3EI'm%20looking%20for%20at%20solution%20where%20we%20can%20protect%20our%20domain%20admin%20accounts%20in%20our%20local%20active%20directory.%20In%20the%20%22old%20days%22%2C%20there%20were%20smart%20cards%2C%20but%20isn't%20there%20a%20more%20modern%20solution%20that%20works%20like%20365%20MFA%2C%20so%20that%20no%20matter%20where%20a%20Domain%20Admin%20account%20logs%20on%20to%20a%20computer%20in%20AD%2C%20it%20will%20be%20promted%20for%202%20factor%20auth.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDoes%20anyone%20use%20smart%20cards%20today%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-234690%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EActive%20Directory%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EManagement%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Contributor

I'm looking for at solution where we can protect our domain admin accounts in our local active directory. In the "old days", there were smart cards, but isn't there a more modern solution that works like 365 MFA, so that no matter where a Domain Admin account logs on to a computer in AD, it will be promted for 2 factor auth.

 

Does anyone use smart cards today?

0 Replies