|
|
|
|
|
|
by tptacek
2479 days ago
|
|
|
Really, what step #1 should be is getting all these applications behind an SSO/IDP, and then using the policy controls in the IDP to enforce MFA for users. We've surveyed startup dir/security's (and the like) and this is almost universally in everyone's top 3, and the leading contender for #1. |
|
|