Multi-Factor Authentication Service

Privacy, Security, and Compliance Simplified with Multi-Factor Authentication

Multi-Factor Authentication Service

Multi-Factor Authentication Service

Verify and authenticate users' identities before granting access to your server environment. Atlantic.Net's Managed Multi-Factor Authentication Service is the easiest way for users to confirm who they are before being granted access to your Linux (SSH) and Windows (RDP) servers, hosted applications, and cloud workloads.

The service deploys, integrates, and operates inside Atlantic.Net's SOC 2 Type II, HIPAA, HITECH, and PCI DSS-aligned hosting infrastructure, so the same MFA controls protecting your servers can be cited in your audit documentation.

What Is Multi-Factor Authentication (MFA)?

Multi-Factor Authentication requires two or more methods (also called factors) to verify your identity. Factors typically combine something you know ‐ like a username and password ‐ with something you have, such as a smartphone app that approves authentication requests, or something you are, such as a fingerprint or face scan.

You may also see MFA called Two-Factor Authentication (2FA) when only two factors are required. 2FA is a subset of MFA; the terms are used interchangeably in many products.

Why Do I Need Multi-Factor Authentication?

Multi-Factor Authentication is one of the most effective controls against remote attacks such as phishing, social engineering, credential stuffing, and brute-force password attempts. By integrating MFA with your Linux and Windows servers, attackers cannot access your accounts without also possessing the physical device needed to complete the second factor ‐ even if the password has been stolen.

Did You Know?

  • An employee or contractor is responsible for 2 out of 3 insider threat incidents.
  • Negligence-based insider threats cost on average $3.8 million per year.
  • 52% of users re-use the same password across multiple logins.
  • Microsoft has reported that MFA blocks more than 99.9% of automated account-compromise attacks.

How Does the Multi-Factor Authentication Service Work?

During login, a verification code or push approval is required in addition to the user's username and password. This adds a second layer of security to the account: even if a password is leaked or guessed, an attacker cannot complete the login without the second factor.

Atlantic.Net's Managed Multi-Factor Authentication

Atlantic.Net's Managed MFA delivers multi-factor authentication as a convenient single sign-on experience. Once cleared, the user gains access to enterprise files and applications ‐ both on-premises and in the cloud ‐ under a single policy framework.

Beyond verifying user identity, the service inspects the health of each device. By checking for the presence of essential security controls and out-of-date software, it can block high-risk or potentially compromised machines from connecting in the first place. Administrators retain control to enforce stricter access policies, such as requiring up-to-date software before login, lowering the attack surface against your confidential data.

Verification Methods

Verification can happen by text message, phone call, an authentication app on a smartphone, or a one-time bypass code. Authentication-app codes work even when the user's phone has no cell signal. Administrators can choose one or more of the methods below to verify their users.

SMS Passcodes

SMS Passcodes

A passcode sent to your phone via SMS. Simply enter the code into the login prompt.

Phone Callbacks

Phone Callbacks

Answer a phone call and press any key to complete the login process.

TOTP Passcodes

TOTP Passcodes

Open an authentication app on your smartphone and enter the displayed code into the login prompt. These are known as time-based one-time passcodes (TOTP).

Bypass Codes

Bypass Codes

Useful for lost devices or to provide single-event access for contractors.

Managed Multi-Factor Authentication Features

Atlantic.Net's Managed MFA integrates with most on-premises and cloud applications, including Office 365, Salesforce, Box, Dropbox, Google Workspace, Slack, and DocuSign. SDKs and client libraries cover project management apps such as Confluence, Jira, Splunk, and Drupal, plus Python, Ruby, Classic ASP, and Java to extend MFA into custom applications.

Easy Registration

Easy Registration

Facilitate secure access and manage logins for thousands of users via bulk user import, self-enrollment, and advanced admin capabilities including APIs.

Protected Logins

Protected Logins

Choose from several MFA methods and set user access policies that match your organization's security needs.

Policy Enforcement

Policy Enforcement

Set up role-based, custom access policies built on parameters that fit your needs.

Device Hygiene

Device Hygiene

Quickly identify unmanaged onsite and mobile devices and at-risk software.

Endpoint Access

Endpoint Access

Analyze security insights to differentiate corporate from personal devices, and control which endpoints can access which applications.

Attack Prevention

Attack Prevention

Identify and contain risky users by mapping software vulnerabilities on their devices via a phishing simulator.

Endpoint Remediation

Endpoint Remediation

Automatically prompt users to update their own devices.

App Protection

App Protection

Protect your cloud apps with secure logins and control which internal apps can be accessed by remote users.

How MFA Methods Compare

Different second factors balance convenience and security in different ways. The table below summarizes how the methods commonly available in Atlantic.Net's Managed MFA service stack up.

Method What the User Needs Strength vs. Phishing Works Offline Best For
Password only (single-factor) Username + password Weak ‐ vulnerable to phishing, leaks, brute force Yes Legacy systems (not recommended)
SMS passcode Phone with cell signal Moderate ‐ vulnerable to SIM-swap attacks No Consumer apps, low-risk accounts
Phone callback Phone with cell signal Moderate No Helpdesk, healthcare front desks
TOTP authenticator app Smartphone with TOTP app Strong Yes Enterprise standard for SSH/RDP/SSO
Push approval Smartphone with MFA app Strong ‐ resistant to credential phishing No (needs data) Daily enterprise sign-ins
One-time bypass code Pre-issued code Single-use only Yes Lost devices, contractor access, break-glass

Atlantic.Net's Managed MFA supports SMS, phone callback, TOTP, and bypass codes today; push approval and additional methods are available through specific integrations on request.

Improve your security posture with multi-factor authentication. Atlantic.Net's experts can seamlessly implement MFA to protect your applications and servers. Contact us to harden your servers against unauthorized access. For faster application deployment, free IT architecture design, and assessment, call 888-618-DATA (3282) or email us at [email protected].

Frequently Asked Questions About Multi-Factor Authentication

Multi-factor authentication is a login control that requires two or more independent factors to confirm a user's identity: something they know (password), something they have (phone, hardware token), or something they are (fingerprint, face). Even if one factor is stolen, an attacker cannot complete the login without the others.

Two-Factor Authentication (2FA) is a specific case of MFA where exactly two factors are required ‐ typically a password plus a one-time code or push approval. MFA is the broader term that covers two or more factors. Most products use the terms interchangeably.

SMS passcodes, phone callbacks, time-based one-time passcodes (TOTP) from an authenticator app, and one-time bypass codes for lost devices or single-event access. Push approval and additional methods are available through specific integrations on request.

Yes. Atlantic.Net's Managed MFA integrates with Linux SSH and Windows RDP so that every interactive login requires a second factor in addition to the user's password.

Both. Administrators can bulk-import users via CSV or API, and end users can self-enroll their own devices through a guided workflow. Role-based policies allow you to require self-enrollment by a specific deadline.

An administrator can issue a one-time bypass code to allow the user a single login without the lost factor. The user re-enrolls a new device inside that session, and the bypass code is invalidated. Lost-device workflows are part of the managed service and do not require a support ticket for routine cases.

MFA is either explicitly required or strongly expected by all three. PCI DSS 4.0 requires MFA for all access into the cardholder data environment. HIPAA's Security Rule expects organizations to implement reasonable authentication controls, and MFA is the de-facto baseline for protecting ePHI. SOC 2 auditors look for MFA on administrative and remote access paths. Atlantic.Net's Managed MFA is delivered inside the same audited environment that backs our HIPAA-compliant and PCI-compliant hosting.

Once a user clears MFA, they receive a single-sign-on session that grants access to enterprise files and applications ‐ both on-premises and in the cloud ‐ without re-prompting for the second factor on every app. Session length and re-authentication intervals are policy-driven and tunable per role.

Yes. Policies are role-based and resource-aware: you can require MFA on production servers and admin consoles while leaving low-risk internal applications under password-only login. Most regulated customers require MFA across the board.

Pricing is based on the number of users protected and the integrations required. Contact our sales team for a quote tailored to your environment.

Award-Winning Service

Award Winning Service
View Our Awards

Millions of Cloud Deployments Worldwide

Trusted by Atlantic.Net

® Each logo is the registered trademark of its respective company.

Dedicated to Your Success

Jason Coleman, VP of Information Technology at Orlando Magic

"After evaluating a range of managed hosting options to support our data operations, we chose Atlantic.Net because of their superior infrastructure and extensive technical knowledge."

Erin Chapple, General Manager for Windows Server at Microsoft Corp.

"Atlantic.Net's support for Windows Server Containers in their cloud platform brings additional choice and options for our joint customers in search of flexible and innovative cloud services."

Reviews and Testimonials
Form Icon

Share Your Vision With Us

And We Will Develop a Hosting Environment Tailored to Your Needs!

Contact an advisor at 866-618-DATA (3282), email [email protected], or fill out the form below.

Atlantic.Net
Privacy Overview

We use cookies for advertising, social media and analytics purposes. Read about how we use cookies in our updated Privacy Policy.

If you continue to use this site, you consent to our use of cookies and our Privacy Policy.