Thoughts on MFA for Windows logons, RDP, and offline access?
ManageEngine ADSelfService Plus recently added support for Microsoft Entra ID, including MFA for Windows logins, RDP sessions, workstation unlocks, and offline authentication scenarios.
One thing that caught my attention is the growing demand for MFA beyond cloud applications. Many organizations seem to be focusing on securing Windows logons, privileged actions, and remote access workflows in addition to Entra sign-ins.
For those managing Entra ID or hybrid environments:
- Are you enforcing MFA at the endpoint level today?
- How are you handling offline authentication scenarios?
- Do you prefer native Microsoft controls, third-party MFA, or a mix of both?
Curious to hear how others are approaching this and whether endpoint MFA has become a requirement in your environment.