Navigate to home Navigate to previous Navigate to next

How to enable MFA for Windows, macOS, and Linux

To enable MFA for desktop or laptop logins, including remote desktop logons, follow the steps given below:

Prerequisites

Steps to enforce MFA for Windows, macOS, and Linux machines:

  1. Go to Configuration → Self-Service → Multi-factor Authentication → MFA for Endpoints.
  2. Select a policy from the Choose the Policy drop-down. This will determine which authentication methods are enabled for which sets of users.
    3. Note:ADSelfService Plus allows you to create OU and group-based policies. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy. Click Select OUs/Groups, and make the selection based on your requirements. You need to select at least one self-service feature. Finally, click Save Policy.
  3. In the MFA for Machine Login section, select the checkbox next to Select the authenticators required. Choose the number of authentication factors to be enforced.
  4. Select the authentication methods to be used. Click on the asterisk (*) symbol next to the authentication method to set it as mandatory. The authentication methods listed can also be rearranged by dragging and dropping at the necessary position.
  5. Click Save Settings.
    6. Note:If ADSelfService Plus is not reachable or down, users will be left stranded in the login screen unable to finish MFA. You can enable users to bypass MFA in such situations. Refer to the Advanced Settings for more information.
Navigate to home Navigate to previous Navigate to next

Copyright © 2020, ZOHO Corp. All Rights Reserved.