IT security | multi-factor authentication

How can you ensure that a user is who they say they are when they logon to the network? Are passwords changed often enough, kept secure and not shared? Security built on static, reusable passwords has proven easy for hackers to beat.

Two-factor authentication requires 2 pieces of identification to login. It is based on something you know (a password or a PIN) and something you have (like a token). A token is a physical device, similar to  an identification card, that contains a certificate of authenticity.  The certificate can be generated by an internal Microsoft Certificate Authority and placed on the token by the administrator. For even greater security, a time-based algorithm within the device generates the certificate. This time-based algorithm is synchronized with the authentication server. Another variation is where the user presses a button on the device to get the next authentication.

With two-factor authentication, you can ensure that users are who they claim to be. In higher security applications, a third level of authentication may require an iris scan or finger print (something you are) to complete user identification.

Many of the management systems that are part of a multi-factor authentication solution also include centralized, and simplified password management. This reduces the demands on IT help desk staff for password lock-out and change requests.
 
NCI authentication solutions include offerings from :