SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image

Yubico launches enrolment suite for Microsoft users

Wed, 20th Nov 2024

Yubico has launched its new Yubico Enrollment Suite designed for Microsoft users, ensuring a seamless transition to a passwordless, phishing-resistant onboarding experience.

The Yubico Enrollment Suite, which comprises Yubico FIDO Pre-reg and YubiEnroll, is compatible with Microsoft's Entra ID.

These services are intended to improve organisations' cyber resilience and advance Zero Trust security models by providing multi-factor authentication without passwords.

Microsoft recently introduced the Secure Future Initiative (SFI), aiming to strengthen phishing-resistant authentication through FIDO2 and CBA standards. This move, in collaboration with FIDO Alliance members such as Yubico, requires multi-factor authentication (MFA) for all Microsoft Entra ID, Azure, and other portal sign-ins. Yubico FIDO Pre-reg enables customers to comply with this requirement by supplying them with pre-enrolled YubiKeys for their Microsoft environments.

"Microsoft and Yubico have collaborated for years to ensure that businesses worldwide can protect their identities from increasingly sophisticated cyber threats like phishing," said Nitika Gupta, Partner Group Product Manager at Microsoft. "With the integration of Yubico Enrollment Suite and Microsoft Entra ID's FIDO provisioning, we empower our customers to create phishing-resistant users and fully secure the employee lifecycle—from onboarding to authentication and account recovery. Our customers can now achieve the security and flexibility they need to protect their enterprise resources with phishing-resistant YubiKeys."

In collaboration with Okta, Yubico initially released a solution for pre-registering YubiKeys for Okta users through Yubico FIDO Pre-reg and now extends this capability to Microsoft customers using the Yubico Enrollment Suite for Microsoft Entra ID.

Yubico FIDO Pre-reg manages key delivery logistics and alleviates the IT and user burden involved in onboarding, while YubiEnroll allows companies and Yubico partners to easily register YubiKeys on their premises for users.

The service Yubico FIDO Pre-reg is available through YubiKey as a Service, offering several benefits, including immediate phishing resistance for employees and reduced responsibility for security decisions.

YubiEnroll, an application for Windows, simplifies the setting up, creation, and registration of FIDO credentials directly with identity providers, involving actions such as factory resetting YubiKeys and managing user verification.

"As the cyberthreat landscape continues evolving and becoming more sophisticated, users and organisations alike need to consistently stay phishing-resistant to create a strong defense against cyber attacks," said Jeff Wallace, Senior Vice President of Product at Yubico. "However, phishing-resistance starts and ends with the user—and enterprises need to focus on creating phishing-resistant users across the enterprise. Yubico Enrollment Suite integration with Microsoft Entra ID helps businesses achieve this by reducing the burden on IT staff and users through delivering modern authentication that moves seamlessly with the user across devices, services and business scenarios."

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X