For us MFA is a combination of a PIV card that we insert into a card reader on our keyboard or usb attached. Then when we logon the system (windows initially) checks for the PIV card and asks for a PIN (thus the 2 factor). Once accepted we are in the system and can do many things, however there are specific applications that also require MFA authentication during the day but it is typically only at entry. Not like VPN.
-------------------------------------------------------------------------- Lionel B. Dyck (Contractor) <sdg>< Mainframe Systems Programmer - RavenTek Solution Partners -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Jesse 1 Robinson Sent: Wednesday, March 21, 2018 11:49 AM To: [email protected] Subject: [EXTERNAL] Mechanics of MFA Multifactor Authentication is on everyone's lips these days. The closest experience I have with it is logging on to VPN with a token-if that really counts. Once logged on, however, my session locks up frequently due to a tight limit on activity. Or I lock it myself when walking away from my desk. When lockup occurs, I reenter my defined password and move on. VPN timeout period is much longer, at which point I have to use the token again. So how does MFA work in practice? I ask because the idea of having to go through MFA every few minutes would be a very hard sell at the ranch. . . J.O.Skip Robinson Southern California Edison Company Electric Dragon Team Paddler SHARE MVS Program Co-Manager 323-715-0595 Mobile 626-543-6132 Office <===== NEW [email protected]<mailto:[email protected]> ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
