Link to home
Start Free TrialLog in
Avatar of amigan_99
amigan_99Flag for United States of America

asked on

What is the ideal frequency to require for MFA Tokens?

We want to implement MFA for VPN access - SAML integrated to Azure AD which trigger MS Authenticator app on the smart phone. My question has to do with the frequency with which the token should be needed? I see it can be required every hour. But that sounds like a pain for users. If you sent it once every eight hours or once a day instead of every hour, what are the security implications? Is it possible that you could log on with one laptop with MFA and then four hours later a hacker could log in with just your UID/AD Password because you'd already done your MFA for the day?    

ASKER CERTIFIED SOLUTION
Avatar of ste5an
ste5an
Flag of Germany image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial