Enforcing multi-factor authentication for privileged access is one of the foundational security best practices. This way, you can ensure that all your privileged accounts are protected against the most complex and complicated attacks.
However, the challenge is that many privileged accounts are used in a shared environment. Multiple users in the same organization often share the same privileged accounts. The most common second factor of authentication is a time-based one-time password (TOTP) generated and provided by an application on a smartphone. It is inconvenient for users to gain possession of the device that provides the TOTP every time they need to access the privileged account. At the same time, it is not advisable to drop any security measure that could potentially save the organization from an attack for the sake of convenience.
To tackle this challenge, Securden offers provisions to configure and generate TOTP codes for individual accounts by integrating with TOTP-generating applications. This strikes a balance between security and convenience. Instead of manually sharing the TOTP generated by the app, users can log in to Securden and see the TOTP generated.
Securden integrates with any TOTP-generating application, including Google Authenticator, Microsoft Authenticator, and others using secret keys and QR codes. Once this integration is successfully completed, the TOTP will be displayed within the Securden UI. Users can copy and use the code when prompted at the time of login.