Post

Top 5 Benefits of Adopting a Modern Cloud-Ready PAM Solution

Intro to MFA Caching

MFA caching is an exciting new feature that enables users to authenticate into the SSO console and use that MFA while the session is active to further disable MFA notifications when authenticating to endpoints.

This can be useful to reduce friction during authentication.

How does this work?

  • Ensure that MFA caching is enabled at the tenant level
  • User logs into the AuthNull SSO console
  • User subsequently authenticates to endpoints (using SSH, RDP, etc.)
  • If SSO caching is enabled, and if the user has already provided an MFA for the web authentication session, then the user will not see further notifications to mobile device.

Authenticate without having to type passwords

When connecting using a jump server with MFA caching experience enabled - users can futher avoid the need to even type in a password. This is looked up automatically from their wallet providing a secure passwordless authentication experience.

To login without passwords or MFA notifications (when MFA caching is enabled)

  • Navigate to PAM > Jump Servers > Connections
  • Select the machine you want to connect to
  • Ensure that you have the credentials (on your wallet)
  • Connect

This should enable a passwordless / authentication experience.

This post is licensed under CC BY 4.0 by the author.