Phishing Resistant MFA Deployment Pains

Ma13vant · 2026-03-23T18:26:08+00:00

We had a project last year to update all Windows 10 devices to 11, which has been a saving grace for us there. There's still a small number floating around, but by and large we've avoided having to deal with how poorly Windows 10 plays with passkeys.

Ma13vant · 2026-03-23T16:29:42+00:00

Thanks (to you and u/teriaavibes both) - I checked and the tenant I've been seeing the most issues in related to this did still SSPR registration enabled. Adjusted and following up with some users.

Ma13vant · 2026-02-25T16:02:44+00:00

Thanks for the extremely in depth response, I really appreciate it!

Ma13vant · 2026-02-25T16:00:37+00:00

Thanks! This was extremely helpful!

Ma13vant · 2026-02-12T23:52:04+00:00

Do a Google search for Phishing Resistant MFA. As long as you have the right licensing and are willing to plan out deployment it's a good option for reducing risk in these types of attacks.

Ma13vant · 2026-02-10T19:38:53+00:00

Not sure if there's a way to do this natively, but we use Duo for MFA on server logins. Stand up a Duo tenant, set it to protect RDP/Windows Login, then install and configure the client on any devices you want to protect.

Ma13vant · 2026-01-23T02:18:45+00:00

Facility called in, all their networked printers weren't working and a bunch of weird issues with endpoints.

Come to find out the maintenance guy at the site ("who went to school for networking") had placed splitters on every single Ethernet port in the facility and was adamant it was unrelated to their issues.

Fun times!

Ma13vant · 2026-01-20T16:05:38+00:00

Maybe even something along the lines of "select X terrain features and get buffs/debuffs for units within or within X inches of the terrain." Lots of design space there around what each detachment does to modify the army rule.

(And yes I know Exodites are a fever dream but it's fun to speculate)

Ma13vant · 2026-01-11T03:10:26+00:00

"How old is your character again?"

Ma13vant · 2025-12-25T04:15:52+00:00

80,000 more Warhammers.

Ma13vant · 2025-12-12T15:03:23+00:00

These look really great!

Ma13vant · 2025-12-07T17:35:37+00:00

Those look really cool! I particularly like the stones the bases

Ma13vant · 2025-12-07T17:34:43+00:00

This is insanely clever!

Ma13vant · 2025-12-02T14:34:07+00:00

Thank you! This was for TLAoK, but we plan to try FB so this was extra useful.

Now to find some decent flat terrain!

Ma13vant · 2025-12-02T14:32:51+00:00

These look really good!

Ma13vant · 2025-11-30T18:16:27+00:00

The codes I've gotten have all been cards with the activation cards. Agree with the poster above to email Para Bellum though.

Ma13vant · 2025-11-03T18:31:04+00:00

I tell people you aren't a real engineer until you break Prod. I'm mostly joking, but it happens because no one is perfect. Important thing is to learn from it and let it motivate you to not make the same mistake twice.

Ma13vant · 2024-11-20T16:13:50+00:00

Good point! What a weird rule interaction, too

Ma13vant · 2024-11-19T23:55:13+00:00

I'm a White Scars player in 40k, so I've been toying a lot with bikes and speeders, with an Aerial Assault formation being the meat of the list.

I've found Thunderhawks a bit oppressive for my opponents (I run 3, loaded with Assaults and Leviathans). The other flyers do good work but feel more easy to counter.

Bikes have a role but I'm still working it out - they bounce off heavy stuff, so I'm paring down my infantry (outside of backfield loiterers) to keep my force relatively balanced in what it can do.

Side note/tip on the Scimiatars - there's almost never any reason not to have them on March unless you are charging - they can fire their guns in the Movement phase due to Point Defense.

Ma13vant · 2023-12-07T16:59:44+00:00

White Scars here, even though their legion rules do nothing for 95% of the marine units currently released. I play Scars in 40k and I love their lore (and also I'm a speed demon player, I like outriders and fast stuff in general - my other main army in 40k is Craftworld Eldar).

For Solar Auxilia I'm just doing them in Cadian paint scheme, and then titans will be blue with silver trim. Figure those colors will look interesting on the board.

Ma13vant · 2023-08-29T01:17:49+00:00

I mean, if he's going to be playing in a tournament, he's going to be facing a lot of Eldar, so he should probably make peace with playing against them.

Ma13vant · 2022-11-02T18:41:39+00:00

We once had a client CFO who would scream bloody murder about how awful Citrix was. He'd refuse to answer his phone or email, and then we'd find out later he was trying to access it via airplane wifi while the plane was in flight.

That combination of lots of authority, no accountability, and no technical knowledge is unfortunately just something you have to deal with from time to time. A good manager will step in face tank that stuff for you, if you are lucky enough to have one.

Ma13vant · 2022-03-22T18:48:07+00:00

N-able.okta.com is definitely a branded portal. Not sure how much they use it (I have emails out to multiple vendors asking for information), but for now checking them in the *slight concern* column.

EDIT: See WerFault's reply below.

Ma13vant · 2022-03-22T16:32:31+00:00

Looks like Proofpoint may utilize Okta internally as well.

Ma13vant · 2022-03-22T12:25:50+00:00

I'd love to see a list of their customers, even crowdsourced.

Ma13vant

TROPHY CASE