How can anyone log in and access the resource without a password? its a security flaw right? we never imagine an identity environment without a password, all these years we have been asked to use a strong and complex password to secure our data, how without password user can be authenticated
Also Read: Can we Replace on-premise Domain Controller with Cloud-based Active Directory
Passwordless authentication is the feature and in some point, we all are going to migrate to this as this is more secure and not dependence on user knowledge on passwords/security, most of the security gap/hacks through users simple weak passwords which is major vulnerability failing the security mechanism
Also Read: Visualized Active Directory without Physical Domain Controller
How can user get authentication and authorization without password?
Authorization without password using advanced technologies
like biometrics, user-generated PIN, and public/private key
cryptography, also WebAuthN(Web Authentication API) and FIDO2 (Fast
Identity Online) can be used to enabling passwordless authentication
the idea is to replace passwords with the existing advanced technologies that already we are using, no major investment are required, just to leverage the existing infrastructure like smartphones, fingerprint scanners, security keys
Also Read: Configure Multi-Factor Authentication on ADFS (Globally or relying party trust)
Multi-factor authentication (MFA) is used to secure our environment as the native password-based authentication is not enough to protect the data, this also increases the complexity and affects the user experience as the user have to validate twist with a different mechanisms
Passwordless authentication helps to overcome this and gives the simple and convenient experience to the users, its a kind of Multi-factor authentication which replace the password with other more secure mechanisms, all are moving towards this like said one day we don’t need to remember any password to access multiple systems
Also Read: Difference between Windows server 2016 and 2019
Passwordless is a way to go and simple also reduce the cost by eliminating the help desk resource as no more password reset/account lockout and many more
Also Read: Comparing ADFS vs Passthrough authentication solutions: Which one is better suits your requirement
Also Read: Windows Server Administrator Interview Questions and Answers
Related posts:
Force Active Directory Sync through Azure AD Connect to Office 365/Azure with console and Powershell Commands
Comparing ADFS vs Passthrough authentication solutions: Which one is better suits your requirement
Can we deploy an On-Premises AD, and synchronize all the already created accounts from Office365/Azure AD to On-Premises AD?
How to configure Azure Active Directory Application accessible only for certain users
Different Types of Azure AD Device Join/Registered
