Account hardening
(adding MFA to administrator panel)
Secfense Broker only allows for FIDO2/WebAuthn compliant methods to be added as multifactor authentication for administrators. Among these are:
- Internal Authenticators (like Apple Touch ID or Windows Hello face or fingerprint authentication)
- Security Keys (like Yubico U2F)
- Windows Hello Pin - Microsoft's deployment of Windows Hello for machines without compliant face scanners or fingerprint readers
To add a new WebAuthn device, click the "Account" icon in the upper right corner and choose "Manage MFA". Click the "Add new WebAuthn device" and "Register Now" buttons. Follow the on-screen instructions relevant to your system and authentication type.