OM-BP-0010: Use passwordless authentication (Best Practice)
ID | OM-BP-0010 |
---|---|
Name | Use passwordless authentication |
Status | Active |
Version |
|
Best Practice | Do not rely on passwords as an authentication factor. |
Rationale
…
Bad Practices
Use passwords
Implementation Details
…
Quotes
Go passwordless
For organizations that use modern technologies like Windows 10, we recommend going passwordless by using face authentication, fingerprints, or a PIN code. For organizations with applications or workloads that can’t be transitioned to passwordless, we recommend adopting a secure password management solution, such as a password locker or vault and requiring that employees use unique, randomized passwords for access to all sensitive information and on all servers and devices, including IoT and IoT controllers and network infrastructure such as switches, routers, and firewalls.
(Microsoft, 2020(2), p. 73)
Bibliography
Related Best Practices
…
Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.
This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.