Using Two-Factor Authentication (2FA)

Rationale

Two-factor authentication (2FA) combines two different factors to prove the user's identity, often a hardware device such as smartcard or smart token and a password or PIN. This improves protection against impostors, as they would have to gain both possession of the hardware device and knowledge of the password or PIN.

Instructions

Use two-factor authentication with a smartcard or smart token where possible. IGEL OS supports this for the following sessions:

• Smartcard authentication for sessions

  • Citrix Storefront

  • RDP Sessions

  • Horizon Sessions

  • Web browser

• (Kerberos) Passthrough Authentication