▲ 12 r/entra

Thoughts on MFA for Windows logons, RDP, and offline access?

ManageEngine ADSelfService Plus recently added support for Microsoft Entra ID, including MFA for Windows logins, RDP sessions, workstation unlocks, and offline authentication scenarios.

One thing that caught my attention is the growing demand for MFA beyond cloud applications. Many organizations seem to be focusing on securing Windows logons, privileged actions, and remote access workflows in addition to Entra sign-ins.

For those managing Entra ID or hybrid environments:

  • Are you enforcing MFA at the endpoint level today?
  • How are you handling offline authentication scenarios?
  • Do you prefer native Microsoft controls, third-party MFA, or a mix of both?

Curious to hear how others are approaching this and whether endpoint MFA has become a requirement in your environment.

reddit.com
u/Sea_Possible_7280 — 12 days ago
▲ 1 r/ManageEngine+1 crossposts

Security teams should probably pay attention to the AI palm reading trend

I genuinely do not think enough people in cybersecurity are paying attention to this new AI palm reading trend.

The process is simple. Users upload multiple high-resolution photos of their palms to ChatGPT or custom AI tools, and the AI generates detailed palmistry reports about their personality, career, relationships, and future. The clearer the image, the more "accurate" the reading is supposed to be, so people are intentionally taking sharp, well-lit close-ups from multiple angles.

But the moment I saw this trend, my first thought was not palmistry.

It was fingerprint reconstruction.

Because those images are not just palm photos. They contain ridge patterns, hand geometry, and biometric data in much better quality than what attackers usually get from random public images online.

Fingerprint cloning is not new either. Researchers have been demonstrating it for years, sometimes using nothing more than ordinary photographs. What has changed now is that users are voluntarily uploading high-quality biometric images themselves to AI platforms without really thinking about the downstream implications.

And honestly, this becomes a much bigger concern in enterprise environments.

Imagine one of those uploads belongs to a sysadmin, an IAM engineer, or someone with biometric access to privileged systems, restricted facilities, or critical infrastructure. Unlike passwords, exposed fingerprints cannot simply be rotated or replaced after compromise.

The trend itself may be harmless entertainment. But the security implications around biometric exposure, AI platforms, and overreliance on fingerprints as authenticators are worth discussing.

If you're a security consultant, sysadmin, IAM professional, or part of a cybersecurity team, this article dives deeper into how this trend could affect enterprise security and why phishing-resistant authentication matters more than ever.

u/Sea_Possible_7280 — 1 month ago

ADManager Plus turns 20 this year

What started as a tool for simplifying Active Directory management has evolved into a full identity governance and administration platform used by more than 37,000+ organizations worldwide.

Over the last two decades of identity governance, enterprise identity management has changed dramatically:

  • Hybrid environments became the norm
  • Governance and compliance became business-critical
  • Identity risks became harder to ignore
  • Automation became essential at scale

ADManager Plus evolved alongside every shift - from AD automation and workflow approvals to access certification, hybrid identity management, AI-assisted operations, and identity governance.

It’s interesting to look back at how much both the product and the identity management space itself have evolved over the years.

Take a look at the timeline of that journey here: https://zurl.co/vhQRR

reddit.com
u/Sea_Possible_7280 — 2 months ago
▲ 2 r/u_Sea_Possible_7280+1 crossposts

SOAR is now live in Log360

Thought it might be useful for folks working in SOC operations, detection engineering, or incident response.

ManageEngine has officially launched SOAR capabilities in Log360. Looks like the idea is to bring security orchestration, automation, and response directly into the SIEM workflow so teams don’t have to constantly switch between disconnected tools or maintain fragile scripts for repetitive response actions.

From what I saw, the focus seems to be on helping security teams automate investigations and incident response faster without adding more operational complexity.

You can check out the launch details here:
https://zurl.co/0l1lC

reddit.com
u/Sea_Possible_7280 — 2 months ago