Having to relogin every two weeks with two-factor authentication. Everything is a MS Office document, in particular ridiculous spreadsheets. Everyone writes in acronyms that they assume everyone else knows. Even though there is always a lot of new staff, every email assumes everyone has been working there forever. ("It's that time of the year again! You need to complete your GRD before week 5 of the COG and send it to the OSYN. Probably you are already an expert in completing these forms after so many years, but if you need instructions, please go to our IDRN and enter your ICRJ.")
God I wish I only had to use MFA once every two weeks!
We only have to use it when connecting from off-site.
Best way is to VPN in (requires MFA) then everything via VPN.
Some admin stuff has more strict checks, but the staff access is use the office network or use MFA.
Conditional access rules. If the admins cared it's easy to apply
Seriously, anything through SSO requires me to do 2FA every time I log in.
I have to login every 8 hours...I'd kill for every two weeks.
I have to re-auth with AWS every goddamn hour and enter a 2fa code for every. single. command. I run from the CLI. It drives me up a fucking wall even though I have it entirely scripted now. Another great example of how overly tight security leads to worse security as people try to bypass it.
I'm so sorry. I will hug the IT team now for only making me login every 2 weeks.
Having to relogin every two weeks with two-factor authentication. Everything is a MS Office document, in particular ridiculous spreadsheets. Everyone writes in acronyms that they assume everyone else knows. Even though there is always a lot of new staff, every email assumes everyone has been working there forever. ("It's that time of the year again! You need to complete your GRD before week 5 of the COG and send it to the OSYN. Probably you are already an expert in completing these forms after so many years, but if you need instructions, please go to our IDRN and enter your ICRJ.")
God I wish I only had to use MFA once every two weeks!
We only have to use it when connecting from off-site.
Best way is to VPN in (requires MFA) then everything via VPN.
Some admin stuff has more strict checks, but the staff access is use the office network or use MFA.
Conditional access rules. If the admins cared it's easy to apply
Seriously, anything through SSO requires me to do 2FA every time I log in.
I have to login every 8 hours...I'd kill for every two weeks.
I have to re-auth with AWS every goddamn hour and enter a 2fa code for every. single. command. I run from the CLI. It drives me up a fucking wall even though I have it entirely scripted now. Another great example of how overly tight security leads to worse security as people try to bypass it.
I'm so sorry. I will hug the IT team now for only making me login every 2 weeks.