This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SMS for MFA ?

Go to solution
ncarmichael
Rising Star II

‎01-24-2023 05:03 AM

I have had a user ask, why should I have to use a MFA app for Jumpcloud, why can't they do it by text/sms message like Microsoft or Google?

What is the official answer?

 

 

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
kramachandran
JumpCloud Alumni
JumpCloud Alumni

‎01-24-2023 05:03 PM - edited ‎01-24-2023 05:14 PM

Traditional MFA factors like SMS or Voice call OTP is not secure and prone to different kind of attacks like Phishing, SIM swap, Man in the middle, brute force etc. JumpCloud has made a conscious decision not to support SMS or Voice call for OTP considering the security risks. It is not mandatory to use Protect, users can use authenticator app of their choice like Google for TOTP. Programmable token or Security keys can also be used.

View solution in original post

1 REPLY 1

Go to solution
kramachandran
JumpCloud Alumni
JumpCloud Alumni

‎01-24-2023 05:03 PM - edited ‎01-24-2023 05:14 PM

Traditional MFA factors like SMS or Voice call OTP is not secure and prone to different kind of attacks like Phishing, SIM swap, Man in the middle, brute force etc. JumpCloud has made a conscious decision not to support SMS or Voice call for OTP considering the security risks. It is not mandatory to use Protect, users can use authenticator app of their choice like Google for TOTP. Programmable token or Security keys can also be used.

You Might Like

New to the site? Take a look at these additional resources:

Community created scripts

Keep up with Product News

Read our community guidelines

Ready to join us? You can register here.