Quote:
Originally Posted by Dixie
Here are a few alternatives to passwords. - Biometric authentication: Uses unique physical attributes like fingerprints, facial recognition, or iris scans
- Possession factors: Uses one-time passwords (OTPs) or registered smartphones
- Hardware tokens: Uses security keys
- Mobile device authentication: Uses SMS or app-based one-time codes
- Personal USB stick: Allows users to log into IT infrastructure without typing credentials
No one is going to remember multiple passwords that are long and complex. They'll resort to writing them down. That defeats the entire reason for having passwords.
 |
Proper enterprise should have a single password and user, and use ldap, saml or other centralized auth for service. End result is I have two work passwords to remember - my cuurent domain pw and the one for my ssh key
Shared passwords - root or other shared admin accounts etc - are in a shared password manager that has saml login controlling access