With mobile devices becoming almost like an additional limb for most of us, it makes sense to utilize them as a tool to prove our identity. SMS and email verification codes are sent to the registered mobile number or email address of users, and they can provide this code to complete their authentication. This is generally used as a second factor of authentication for logging in, or for vital operations such as resetting forgotten passwords.

Configure SMS and email verification codes in ADSelfService Plus   

ADSelfService Plus is an identity security solution with multi-factor authentication, single sign-on, and self-service password management capabilities. It also provides MFA with 20 different authentication techniques, including SMS and email verification codes. Admins can enforce MFA for:

• Windows, macOS, and Linux logins.

• Virtual private network (VPN) and Remote Desktop Protocol (RDP) logins.

• Outlook Web Access (OWA) logins.

• Enterprise applications login through single sign-on.

• Self-service password reset and account unlock.

• ADSelfService Plus logins.

Let's see how it works as a second authentication factor for Windows login:

1. A user attempts to log in to their Windows machine using the AD password.

2. After the password is verified, the user is redirected to the ADSelfService Plus portal, where they can select a second factor of authentication.

3. Next, the user will be asked to select an email address or a mobile number from the drop-down menu available. The verification code will be sent to the selected email address or mobile number.

4. The user should enter the verification code they receive in the textbox, and click Continue. If the verification is successful, the user is logged in to their machine.