AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of amigan_99
amigan_99
Flag for United States of America asked on

What is the ideal frequency to require for MFA Tokens?

We want to implement MFA for VPN access - SAML integrated to Azure AD which trigger MS Authenticator app on the smart phone. My question has to do with the frequency with which the token should be needed? I see it can be required every hour. But that sounds like a pain for users. If you sent it once every eight hours or once a day instead of every hour, what are the security implications? Is it possible that you could log on with one laptop with MFA and then four hours later a hacker could log in with just your UID/AD Password because you'd already done your MFA for the day?    

VPNAzureSecurity* multi-factor authentication
Avatar of undefined
Last Comment
ste5an
8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
ste5an
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent