Token-based systems are a common solution, but are expensive to procure and implement, and are a burden to maintain. Identity Automation’s multi-factor solution includes tokens sent via SMS or Google Authenticator, using the user’s cell phone as the delivery platform. This approach removes the hassle of maintaining a separate and dedicated token system and doesn’t require the user to carry and keep track of an additional piece of equipment. Our solution also leverages existing authentication mechanisms for the system that you are granting access to, thus eliminating the need to inject additional complexities into your environment.
RapidIdentity can support multiple MFA policies, each of which can include Access Control Lists (ACLs). When ACLs are defined, only users on the ACL can obtain access. Defining ACLs to one or more MFA policies reduces the likelihood of improper access and inappropriate data use further, since an attacker would need to have knowledge of both the organizational directory structure and the users assigned to designated groups.