AnsweredAssumed Answered

Strong authentication on App Portal login page

Question asked by Shawn Murphy Employee on Dec 16, 2015
Latest reply on Dec 18, 2015 by Duc Nguyen

Via Access challenges for strong authentication AFTER logging into the portal, when trying to access an application. For most customers, that makes sense because it provides the most convenient user experience. There's no reason to enforce strong authentication if a user is simply logging in to access the cafeteria menu for the day...This is where the "smart" authentication comes into play.

 

However, there are situations where it makes sense to enforce strong authentication "on the front door." For instance, if the users forget their domain password (a VERY common problem in the enterprise.) Or if the organization is concerned about a username/password leak resulting in adversaries enumerating the applications a user has access to, even though they may not be able to gain access to the app itself without strong authentication.

 

My question: Is it possible to enforce strong authentication (either Via Auth or SecurID) on the Application Portal login page?

Outcomes