These are the same companies that don’t support second factors, only have their app as a second factor, or only SMS second factor. Is it too much to ask for smart card or token (yubikey) support?

  • deweydecibel@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    edit-2
    1 year ago

    That’s on your IT department.

    Well, it’s also on Microsoft for selling their “modern” security theater bullshit to every IT department in the country while not designing it in a sensible fashion or working with third parties to provide meaningful alternatives to the Microsoft branded shit every employee will soon be required to install on their personal devices…

    But that’s also on your IT department for not warning you or allowing you to keep the SMS/phone verification as a backup for these exact situations. Those aren’t depreciated yet, but some companies have let Microsoft’s recommend security practices (co-written by their sales team) scare them into downright idiocy.

    As someone in IT, here’s what you do: Next time that sort of thing happens, just reach out to them immediately and have them reset everything. They may get annoyed, but you know what? They shouldn’t be. It’s more secure to have an employee call in every single time they need to change a password or re-authenticate a device. It’s inconvenient, unnecessary, and downright annoying, wasting everyone’s valuable time, but hey…it’s more "secure’. If it’s more secure, you aren’t allowed to be against it.