Learn how to use Azure to provide additional factors of authentication, create an Azure domain, create an MFA provider in Azure, and authenticate using a phone call or text message.
- [Instructor] Multi-factor authentication is one more layer…that we can add when it comes to verifying…the identity of users accessing your applications…or other resources.…The basic idea behind it is once a user enters in…their login credentials,…the authentication process is intercepted…by an additional check of the user's identity.…There are three ways you can verify your identity.…You can prove what you know.…A password or a PIN or something of that sort.…
You can prove what you are.…Fingerprints, voice pattern recognition, other biometrics.…Or you can prove what you have.…A specific device, a smart card or a mobile phone…or access to a traditional landline…that only rings in your office.…Now, biometric scans and security certificates…are a nice addition to just using passwords…but they share one weakness.…They're still being transmitted over and back…across the same connection as the password.…
What if we could get the second factor of authentication…out of that band entirely?…They are still being transmitted over the same connection…
Note: The topics covered here map to the Configure Identity and Access Solutions domain for Microsoft Certified Solutions Associate (MCSA) Exam 70-412, Configuring Advanced Windows Server 2012 Services. Use these tutorials to study for the exam.
- Implementing Active Directory Federation Services (AD FS)
- Configuring AD FS authentication policies
- Configuring multifactor authentication
- Installing and configuring Active Directory Certificate Services (AD CS)
- Creating certificate templates
- Configuring certificate authority backup and recovery
- Managing certificates, including templates and renewal
- Installing and configuring Active Directory Rights Management Services (AD RMS)