Well, there are of course certain requirements. So how do I get started with phone sign-in? I hear you grumble. This article will talk about “phone sign-in” for Enterprise organizations for which it is what is brand new. But what if I told you Microsoft has just made a new sign-in feature available (currently rolling out to tenants worldwide), that makes it possible to login with your work or school account without using a password or any of the above features? Yes, that sounds insane, right? But the fact is that this is now possible with the use of what is referred to as “phone sign-in.” Those of you using Microsoft accounts might be aware of the feature already since Microsoft made it available to consumers a while back. And yes, these features are awesome and are already gaining momentum. If the end user’s Windows 10 device is either Azure AD joined or Azure AD Hybrid joined, these features can already be used to login to access Microsoft cloud services such as the workloads in Office 365. Agreed, we already have Windows Hello for Business, which is a native component of Windows 10, that supports face recognition, PIN code, picture passwords, and device-based dynamic lock as depicted below. Although this method works pretty well, Microsoft has put a lot of resources into improving the end-user experience even further. Nowadays, most enterprise organization end users still use a username and password (usually Active Directory-based) combined with two-factor authentication to access cloud services and on-premises systems. On top of that, organizations started to deploy two-factor solutions in order to optimize the security further. In addition, when the demand for being able to connect to internal corporate systems over the Internet saw the light of day, perimeter networks (aka DMZ) and virtual private network (VPN) solutions became popular. The way the systems (as they were called back then) were secured was through the use of so-called security boundaries such as firewalls. All the way back to when end users primarily worked through a session in an old-school mainframe up until Active Directory, this has pretty much been the case. For decades, we have accessed IT systems using a set of credentials consisting of a username and a password.
0 Comments
Leave a Reply. |