Follow

What is the best practice for protecting the AuthAnvil Two-Factor Auth Server (2FA)?

Your AuthAnvil server is a critical part of your infrastructure, and one that should be protected in the same way that you protect your domain controller. It is, after all, your other authentication server. While doing support cases, I’ve seen several times where the AuthAnvil server is not protected by a Windows Logon Agent. This is akin to installing an alarm system and then never setting the alarm.

Protect your AuthAnvil Server with a Windows Logon Agent. This way you know who is logging on to it and when, securing remote access and making it more difficult for anyone to tamper with AuthAnvil. If you’re concerned about losing access to the AuthAnvil server if IIS or SQL goes down, or if there is a catastrophic failure in Windows, don’t worry. If you can’t access AuthAnvil, you can always fall back to the override password, and if all else fails, (ie, if something is wrong with Windows), you can use the emergency uninstall procedure from Appendix A of the Windows Logon Agent Guide to get past the AuthAnvil Windows Logon Agent.

Your AuthAnvil server is an important part of your security infrastructure. Don’t forget to protect it.

 

Questions?

If you have any questions or need some help, we would be happy to assist. Open a case at help.scorpionsoft.com or send an email to support@scorpionsoft.com.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk