Issue link: https://insights.oneneck.com/i/1482798
January 2020 12 Multi-factor authentication (MFA) Password-only authentication mechanisms are no longer sufficient to protect user accounts. Employees, volunteers, board members, and other external supporters connect to your nonprofit's resources from inside and outside the organization network using a variety of devices, including unmanaged personal smartphones and tablets. In this environment, weak login credentials can provide attackers with easy entry to gain unchallenged access to your nonprofit's resources. MFA adds an additional layer of defense by requiring users to provide two or more forms of authentication to access an account. The forms of authentication can include something the user knows (such as a password), something they have (such as a phone or other trusted device), or something that makes up who they are (such as a fingerprint or other biometric). Azure MFA delivers strong authentication for securing access to mission- critical data and applications. Users may be challenged for additional authentication based on contextual data about their login, geolocation, access request, system configuration details, and other signals. How strong identity management provides a foundation for 'Zero Trust' security