Guest User!

You are not Sophos Staff.

Thread Info
  • Locked Locked
  • Replies 6 replies
  • Subscribers 10 subscribers
  • Views 12775 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multi-factor Authentication for Sophos Central Admin

Gowtham Mani

Hi Everyone,

Multi-factor Authentication(MFA) is now avaiable for Sophos Central Admin. MFA provides an additional layer of security, in addition to first factor (password). MFA supports Google Authenticator and Sophos Authenticator for second factor. MFA is not mandatory for Sophos Central Admin.

MFA for Sophos Central Admin has an Opt-in/Opt-out feature that can only be controlled and managed by a Super Admin or a Sophos Partner with access to Sophos Central Admin.

For more details refer Sophos Central Admin: How to enable Multi-factor Authentication for a user.



This thread was automatically locked due to age.
Parents

  • A step in the right direction for authentication... 

     

    Any idea on when there will be SAML integration? (eg ADFS).

    Reasons being (besides the obvious ease of use and security benefits):

    •  AD Sync and Centrals logic for removal of accounts cannot really be trusted. I recently found a user who left the company, had their account disabled, still maintained their Sophos Central account with admin permissions. (Support advised this was working as designed).
    • Self Service Portal is practically useless if the users cant login using AD credentials. This is important for retrieving recovery keys when needed. 
Reply

  • A step in the right direction for authentication... 

     

    Any idea on when there will be SAML integration? (eg ADFS).

    Reasons being (besides the obvious ease of use and security benefits):

    •  AD Sync and Centrals logic for removal of accounts cannot really be trusted. I recently found a user who left the company, had their account disabled, still maintained their Sophos Central account with admin permissions. (Support advised this was working as designed).
    • Self Service Portal is practically useless if the users cant login using AD credentials. This is important for retrieving recovery keys when needed. 
Children
No Data
Unfiltered HTML