Introduction
An organization has experienced a series of security incidents. Employees report unexpected sign-in alerts, and several accounts have been compromised.
After investigating, the IT team identifies a common pattern: attackers are gaining access through stolen passwords. In many cases, employees unknowingly entered their credentials into phishing sites or reused passwords across multiple services.
These incidents highlight an important security consideration: passwords depend on information that users must create, remember, and protect. Although organizations can reduce risk through security controls and user education, passwords can still be exposed through attacks such as phishing and credential theft.
In this module, you'll follow the IT team as it transitions its organization to a passwordless model to strengthen and simplify security. In the process, you'll learn about several passwordless options available to organizations running Windows and how to implement them.
Learning objectives
In this module, you'll learn how to:
- Assess common password-related security risks
- Describe key passwordless authentication methods
- Implement passwordless options such as Windows Hello for Business, authenticator apps, and security keys
- Choose the right authentication method for different user scenarios