so I have a weird question…
Now that we are signing in using MFA instead of security questions, I noticed that we get this screen after typing in our user name and password:
To get the Authentication Code you need to do the following:
- Find your phone
- Log into the authentication app on your phone
- Scroll through the 100s of Codes for other apps until you get to the Sailpoint one
- Make sure it’s for the correct Sailpoint instance
- Type the code in
- You’re in!
This is a simple process and great security, but when I log into other apps like Google, Microsoft, I noticed they have less friction for their MFA process.
Stick with me here.
To log into Delinea, which goes through Microsoft MFA, I don’t even have to type a password. SSO automatically logs me in, but let’s just say I had to. Just like with above, after typing in my username and password I get the following screen:
Instead of having to get an Authentication Code, I need to just approve the sign in request. Steps:
- Find your phone.
- The request is already on the screen, so just type in the number shown
- You’re logged in
There’s far less friction to getting logged in, especially considering how fast these logins expire after inactivity.
My question:
Is it possible to implement something like that with Sailpoint IDN?