IBM’s New MFA Offering is a Step in the Right Direction – But Only Part of the Picture

Key Takeaways

• MFA is essential for protecting against modern cyber threats. IBM’s new built-in support for IBM i systems signals just how important it has become.
• Precisely Assure MFA offers broader, more flexible protection across interfaces, users, and access points – making it the enterprise-ready choice for securing IBM i environments.
• Evaluate your MFA strategy thoughtfully, ensuring it meets today’s needs for usability, coverage, integration, and control.

In the world of cybersecurity, we know that threats are evolving daily and that breaches can cost millions.

That’s why every defense counts – and why IBM’s recent announcement introducing native support for multi-factor authentication (MFA) on IBM i is welcome news. It’s a strong signal that even well-established platforms must evolve and adopt these capabilities to meet modern security demands.

At Precisely, we applaud this move. It validates what we’ve said for years: MFA is one of the most effective tools for preventing unauthorized access. However, while IBM’s latest release is a step forward, it’s not quite the complete package. Precisely Assure Multi-Factor Authentication remains the gold standard for customers looking to implement robust and flexible MFA on IBM i systems.

Let’s explore why MFA matters, and the critical capabilities that need to be included in a fully rounded solution.

Why MFA Matters Now More Than Ever

Cybercrime has grown increasingly sophisticated – and especially with the remote and cloud-based environments of today, your security efforts need to go beyond your traditional perimeter defenses. In other words, passwords alone are no longer enough.

Credential theft is at the heart of many high-profile breaches. In fact, over 80% of hacking-related breaches involve stolen credentials. That means that even a single compromised password can open the door to widespread damage.

MFA changes the game. It requires you to verify your identity through two or more factors:

• something you know (password)
• something you have (device/token)
• something you are (a biometric – like your fingerprint or voice)

MFA dramatically reduces the risk of unauthorized access – so much so, that it can block over 99.9% of account compromise attacks.

The message is clear: MFA needs to be prioritized as the first line of defense in your organization’s security posture.

Precisely Assure MFA Is Still the Gold Standard for IBM i MFA

IBM’s inclusion of MFA in their latest IBM i 7.6 release is an important milestone. It enables organizations to apply basic multi-factor protections directly within the platform – something that previously required external solutions.

However, if your organization seeks to mature your security programs, you’ll need more advanced capabilities, broader coverage, and deeper control.

That’s where Precisely Assure MFA, a feature of Assure Security, comes in. Designed specifically with the IBM i environment in mind, Assure MFA goes beyond basic MFAA functionality and  by offering a more comprehensive, enterprise-grade solution.

Here’s what sets Assure MFA apart

✅ User-friendly authentication
Supports multiple authentication methods, including push notifications and On-Demand Authentication, which are more user-friendly.

✔️ Centralized management
Uses centralized Radius servers, which are easier to manage.

✔️ Integration with IAM platforms
Supports integration with various Identity and Access Management (IAM) platforms like Okta, DUO, Microsoft Entra ID and others – providing flexibility and ease of use.

✔️ Incremental MFA definitions
Offers a phased approach to defining users and applications. This allows for better productivity and gradual testing.

✔️ Ransomware protection
MFA integration with SAM offers enhanced ransomware protection, taking MFA to the next level and contributing to your Zero Trust strategy.

✔️ Flexible Control
Provides the ability to define controls at the individual user or group level, offering more flexibility in implementation.

✔️ Support for Older OS Versions
Assure MFA supports OS levels below IBM i v7.6, ensuring that customers with older systems aren’t left behind.

Without exception, every company needs MFA on their IBM i systems. IBM’s latest MFA offering is evidence of this importance, but when you’re choosing the right solution for your organization, you need to ask yourself some key questions:

• Does this solution support my current hardware and software?
• Can I easily adjust MFA policies as my requirements change and my environment evolves?
• Can my MFA solution integrate with my corporate Identity and Access Management platform and policies?

If the answer is “no” to any of the above, it’s worth looking at solutions – like Precisely Assure Security – that provide enterprise-grade protection without compromise.

Moving Forward with Confidence

Whether you’re just beginning your MFA journey or looking to expand an existing deployment, now is a great time to evaluate your strategy. Precisely Assure MFA helps you elevate your MFA  into a complete, scalable solution tailored to your business.

Security is a journey, and MFA is one of the most critical steps on that path. Precisely is committed to helping IBM i customers strengthen their access control defenses, now and into the future.  To learn more, watch our on-demand webinar: The Changing Compliance Landscape in 2025.