Multi-factor Authentication for Rubrik
A simple, effective way to increase protection against unauthorized account access.
Ransomware attacks are not only on the rise, but also targeting your backups. Multi-Factor Authentication (MFA) secures the credentials protecting this critical last line of defense.
Starting with our Summer 2022 releases, Rubrik will make it even easier to secure your backup by enabling Time-based One-Time Password (TOTP) MFA by default.
Rubrik to Enhance Data Security with Automatically Facilitated MFA
MFA FAQ
Read the FAQ to learn all about MFA, how to implement it, and to answer questions about timing and options.
User Guide
Learn how to deploy and configure TOTP MFA in your environment.
How MFA Works
MFA is an effective security control for protecting both on-premises and public cloud data. This method protects against stolen credentials by requiring additional authentication steps (or factors) before granting access. Common factors are username and password, numeric codes from an authentication app, or physical security keys.
If one of the factors (commonly, the password) has been compromised by a hacker or unauthorized user, the chances of another factor also being compromised are low. Thus, MFA provides confidence in the user’s identity.
Rubrik Native MFA
Rubrik supports Time-based one-time password (TOTP) MFA for local and LDAP accounts. TOTP MFA provides an easy to implement MFA solution that does not require additional server tooling or software deployments and works with commonly available authentication applications - such as Microsoft Authenticator or Google Authenticator.
MFA for Single Sign-On (SSO)
For SSO integration, Rubrik integrates with SAML 2.0 Identity Providers (IdP), enabling users to access multiple applications with a single set of credentials. SAML providers can support multiple types of MFA schemes. Typical providers include Okta, Duo, and Ping Identity.
