Validate Users' Identity Before They Elevate Privilege
Multi-factor authentication (MFA) at login can be cumbersome and unnecessary, particularly if everyday access and activity cannot do harm and does not expose sensitive information. However, the elevation of privilege should always require identity assurance through MFA validation that an authorized human is making the request. Centrify Privilege Elevation Service provides host-based MFA at privilege elevation across Linux, UNIX and Windows systems, which cannot be circumvented.
Zero Trust Demands Identity Assurance
MFA Service for All Privileged Access
Whether requiring MFA at system or vault login, before privilege elevation, or on a password checkout, Centrify Platform delivers a consistent and easily maintainable MFA service for ALL privileged access. Centrify Platform’s MFA service supports the broadest range of authenticators for NIST Level 2 and 3 Assurance Levels. We got you covered.
MFA for Linux and UNIX Privilege Elevation
A zero standing privilege approach requires validation of who is making the request to elevate their privilege. Linux admins logging in to check a system do not introduce risk and should not require MFA. However, execution of privileged commands that could harm a business should first require MFA to validate the admin’s identity.
MFA for Windows Privilege Elevation
A zero standing privilege approach requires always verifying who is requesting privileged access. Windows admins who need to run applications with privilege prove their identity with MFA by re-authenticating with their Active Directory password or validating their identity with a Smart Card.
Authenticators Supported by Centrify
Learn More About Centrify Server Suite
Centrify Server Suite
Minimize Your Attack Surface and Control Privileged Access to Your On-Premises and Cloud-Hosted...
A Leader in The Forrester Wave: Privileged Identity Management (PIM), Q4 2020
The Forrester Wave™: Privileged Identity Management, Q4 2020 includes 10 providers based on a 24...