[et_pb_section fb_built=“1″ _builder_version=“4.27.4″ _module_preset=“default“ global_colors_info=“{}“][et_pb_row _builder_version=“4.27.4″ _module_preset=“default“ global_colors_info=“{}“][et_pb_column type=“4_4″ _builder_version=“4.27.4″ _module_preset=“default“ global_colors_info=“{}“][et_pb_code _builder_version=“4.27.4″ _module_preset=“default“ global_colors_info=“{}“] Local-IT-Partner · MFA/2FA für Unternehmen (B2B) Cool Paris UX · Drop-in for Divi Code Module========================= –>

<!-- \[et\_pb\_line\_break\_holder\] --> :root{<!-- \[et\_pb\_line\_break\_holder\] --> --lip-primary:#0B5CAB; /\* Blau \*/<!-- \[et\_pb\_line\_break\_holder\] --> --lip-accent:#E30613; /\* Rot \*/<!-- \[et\_pb\_line\_break\_holder\] --> --lip-ink:#1f2330; /\* Text dunkel \*/<!-- \[et\_pb\_line\_break\_holder\] --> --lip-muted:#616978; /\* Text grau \*/<!-- \[et\_pb\_line\_break\_holder\] --> --lip-line:#e8ecf4; /\* Linien \*/<!-- \[et\_pb\_line\_break\_holder\] --> --lip-radius:18px;<!-- \[et\_pb\_line\_break\_holder\] --> --lip-shadow:0 10px 30px rgba(25,35,52,.10);<!-- \[et\_pb\_line\_break\_holder\] --> --lip-shadow-strong:0 18px 44px rgba(25,35,52,.16);<!-- \[et\_pb\_line\_break\_holder\] --> --lip-max:1080px;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> .lip-mfa-v2{font-family:inherit; color:var(--lip-ink); padding:92px 20px 88px; background:#fff; position:relative; overflow:hidden}<!-- \[et\_pb\_line\_break\_holder\] --> /\* zarter Header-Strich \*/<!-- \[et\_pb\_line\_break\_holder\] --> .lip-mfa-v2::before{<!-- \[et\_pb\_line\_break\_holder\] --> content:""; position:absolute; inset:0 auto auto 0; height:6px; width:100%;<!-- \[et\_pb\_line\_break\_holder\] --> background:linear-gradient(90deg,var(--lip-primary),var(--lip-accent));<!-- \[et\_pb\_line\_break\_holder\] --> opacity:.12;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> .lip-wrap{max-width:var(--lip-max); margin:0 auto}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Header \*/<!-- \[et\_pb\_line\_break\_holder\] --> .lip-kicker{display:inline-flex; gap:10px; align-items:center; padding:8px 14px; border-radius:999px;<!-- \[et\_pb\_line\_break\_holder\] --> background:linear-gradient(90deg, rgba(11,92,171,.10), rgba(227,6,19,.08));<!-- \[et\_pb\_line\_break\_holder\] --> color:var(--lip-primary); font-weight:700; font-size:.9rem; letter-spacing:.2px;<!-- \[et\_pb\_line\_break\_holder\] --> box-shadow:inset 0 0 0 1px rgba(11,92,171,.18);<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .lip-title{margin:12px 0 8px; font-size:clamp(30px,4.4vw,46px); line-height:1.12; letter-spacing:.2px}<!-- \[et\_pb\_line\_break\_holder\] --> .lip-sub{margin:0 0 28px; max-width:780px; color:var(--lip-muted); font-size:clamp(16px,1.8vw,18px)}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Badges \*/<!-- \[et\_pb\_line\_break\_holder\] --> .lip-badges{display:flex; flex-wrap:wrap; gap:10px; margin:14px 0 36px}<!-- \[et\_pb\_line\_break\_holder\] --> .lip-badge{<!-- \[et\_pb\_line\_break\_holder\] --> display:inline-flex; align-items:center; gap:8px; padding:8px 12px; border-radius:999px;<!-- \[et\_pb\_line\_break\_holder\] --> background:#f7f9fc; color:#304055; border:1px solid var(--lip-line); font-weight:600; font-size:.85rem;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .lip-dot{width:8px; height:8px; border-radius:50%;}<!-- \[et\_pb\_line\_break\_holder\] --> .is-blue .lip-dot{background:var(--lip-primary)}<!-- \[et\_pb\_line\_break\_holder\] --> .is-red .lip-dot{background:var(--lip-accent)}<!-- \[et\_pb\_line\_break\_holder\] --> .is-gray .lip-dot{background:#94a0b5}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Section titles \*/<!-- \[et\_pb\_line\_break\_holder\] --> .sec-title{font-size:22px; margin:0 0 10px}<!-- \[et\_pb\_line\_break\_holder\] --> .sec-desc{color:var(--lip-muted); margin:0 0 18px}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Cards grid \*/<!-- \[et\_pb\_line\_break\_holder\] --> .grid{display:grid; gap:18px}<!-- \[et\_pb\_line\_break\_holder\] --> .grid-2{grid-template-columns:1fr}<!-- \[et\_pb\_line\_break\_holder\] --> @media(min-width:900px){.grid-2{grid-template-columns:1fr 1fr}}<!-- \[et\_pb\_line\_break\_holder\] --> .card{<!-- \[et\_pb\_line\_break\_holder\] --> background:#fff; border:1px solid var(--lip-line); border-radius:var(--lip-radius);<!-- \[et\_pb\_line\_break\_holder\] --> box-shadow:var(--lip-shadow); padding:22px 22px 20px; transition:transform .25s, box-shadow .25s;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .card:hover{transform:translateY(-4px); box-shadow:var(--lip-shadow-strong)}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Icon row \*/<!-- \[et\_pb\_line\_break\_holder\] --> .row{display:flex; gap:14px; align-items:flex-start}<!-- \[et\_pb\_line\_break\_holder\] --> .ico{<!-- \[et\_pb\_line\_break\_holder\] --> width:52px; height:52px; border-radius:14px; display:grid; place-items:center;<!-- \[et\_pb\_line\_break\_holder\] --> background:conic-gradient(from 220deg, rgba(11,92,171,.12), rgba(11,92,171,.02));<!-- \[et\_pb\_line\_break\_holder\] --> box-shadow:inset 0 0 0 1px rgba(11,92,171,.18);<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .ico svg{width:28px; height:28px; stroke:var(--lip-primary)}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> .card h3{margin:2px 0 6px; font-size:18px}<!-- \[et\_pb\_line\_break\_holder\] --> .card p{margin:0 0 10px; color:#2c3442}<!-- \[et\_pb\_line\_break\_holder\] --> .card ul{margin:0 0 0 18px}<!-- \[et\_pb\_line\_break\_holder\] --> .card li{margin:6px 0}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Accent border blocks \*/<!-- \[et\_pb\_line\_break\_holder\] --> .accent{<!-- \[et\_pb\_line\_break\_holder\] --> border-left:4px solid transparent; border-image:linear-gradient(var(--lip-primary), var(--lip-accent)) 1;<!-- \[et\_pb\_line\_break\_holder\] --> padding-left:14px; margin:10px 0 0<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Chips (Do/Don't) \*/<!-- \[et\_pb\_line\_break\_holder\] --> .chips{display:flex; flex-wrap:wrap; gap:8px; margin:10px 0 0}<!-- \[et\_pb\_line\_break\_holder\] --> .chip{padding:8px 12px; border-radius:999px; border:1px solid var(--lip-line); background:#f8fbff; font-weight:600; font-size:.9rem}<!-- \[et\_pb\_line\_break\_holder\] --> .chip.bad{background:#fff5f6; border-color:#ffd8dc; color:#9f2a36}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Timeline \*/<!-- \[et\_pb\_line\_break\_holder\] --> .timeline{position:relative; margin:6px 0 0; padding-left:26px}<!-- \[et\_pb\_line\_break\_holder\] --> .timeline::before{<!-- \[et\_pb\_line\_break\_holder\] --> content:""; position:absolute; left:12px; top:0; bottom:0; width:2px; background:linear-gradient(var(--lip-primary),var(--lip-accent));<!-- \[et\_pb\_line\_break\_holder\] --> opacity:.35; border-radius:2px;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .step{position:relative; margin:0 0 18px}<!-- \[et\_pb\_line\_break\_holder\] --> .step::before{<!-- \[et\_pb\_line\_break\_holder\] --> content:""; position:absolute; left:-2px; top:3px; width:14px; height:14px; border-radius:50%;<!-- \[et\_pb\_line\_break\_holder\] --> background:#fff; border:2px solid var(--lip-primary); box-shadow:0 0 0 4px rgba(11,92,171,.08)<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .step h4{margin:0 0 6px; font-size:16px}<!-- \[et\_pb\_line\_break\_holder\] --> .step p{margin:0; color:var(--lip-muted)}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Checklist \*/<!-- \[et\_pb\_line\_break\_holder\] --> .checklist{margin:6px 0 0; display:grid; gap:10px}<!-- \[et\_pb\_line\_break\_holder\] --> .check{<!-- \[et\_pb\_line\_break\_holder\] --> display:flex; gap:10px; align-items:flex-start; padding:10px 12px; border:1px dashed #dfe6f1; border-radius:12px; background:#fbfdff;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .check .tick{width:18px; height:18px; border-radius:6px; background:linear-gradient(180deg,var(--lip-primary), #2f7ccc); box-shadow:0 1px 4px rgba(11,92,171,.35)}<!-- \[et\_pb\_line\_break\_holder\] --> .check p{margin:0}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* CTA \*/<!-- \[et\_pb\_line\_break\_holder\] --> .cta{<!-- \[et\_pb\_line\_break\_holder\] --> margin-top:26px; padding:18px 20px; border:1px solid var(--lip-line); border-radius:16px;<!-- \[et\_pb\_line\_break\_holder\] --> background:linear-gradient(90deg, rgba(11,92,171,.09), rgba(11,92,171,.03));<!-- \[et\_pb\_line\_break\_holder\] --> display:flex; flex-wrap:wrap; gap:16px; align-items:center; justify-content:space-between;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .cta .lead{margin:0; font-size:clamp(18px,1.9vw,20px); font-weight:500; color:#2b2f3a; letter-spacing:.2px}<!-- \[et\_pb\_line\_break\_holder\] --> .btn{<!-- \[et\_pb\_line\_break\_holder\] --> display:inline-block; padding:12px 18px; border-radius:12px; color:#fff; text-decoration:none; font-weight:700; letter-spacing:.2px;<!-- \[et\_pb\_line\_break\_holder\] --> background:linear-gradient(90deg,var(--lip-primary), #2f7ccc); box-shadow:0 10px 22px rgba(11,92,171,.18);<!-- \[et\_pb\_line\_break\_holder\] --> transition:transform .2s, box-shadow .2s;<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] --> .btn:hover{transform:translateY(-2px); box-shadow:0 16px 28px rgba(11,92,171,.25)}<!-- \[et\_pb\_line\_break\_holder\] --><!-- \[et\_pb\_line\_break\_holder\] --> /\* Reduce motion \*/<!-- \[et\_pb\_line\_break\_holder\] --> @media (prefers-reduced-motion:reduce){<!-- \[et\_pb\_line\_break\_holder\] --> .card,.btn{transition:none}<!-- \[et\_pb\_line\_break\_holder\] --> }<!-- \[et\_pb\_line\_break\_holder\] -->

Security Playbook

MFA/2FA für Unternehmen: Richtlinie, Methoden & Rollout ohne Friktion

So sichern KMU Benutzer, Admin-Konten und Cloud-Dienste – mit einer MFA-Strategie, die Phishing-resistent ist, in Prozesse passt und von Teams akzeptiert wird.

Phishing-resistente MFA KMU-Best Practices Policy & Rollout

Warum MFA bei KMU nicht verhandelbar ist

Phishing, Credential-Stuffing und Passwort-Reuse sind die häufigsten Einfallstore. MFA setzt eine zweite, unabhängige Barriere – kompromittierte Passwörter reichen allein nicht mehr.

• Critical Assets: M365/Entra ID, Google Workspace, VPN/Firewall, ERP/CRM, Admin-Konten

• Outcome: deutliche Reduktion erfolgreicher Logins aus Phishing-Kampagnen

Welche Faktoren wirklich zählen

FIDO2 / WebAuthn (empfohlen) TOTP-App (MS/Google Authenticator) Push mit Number-Matching SMS/E-Mail-Codes (nur Notfall)

Praxis: FIDO2 für Admins & Hochrisiko-Nutzer priorisieren, TOTP als Standard, Push nur mit Number-Matching.

MFA-Richtlinie: Kernpunkte kurz & knapp

• Scope: alle Benutzer; zuerst Admins & Remote-Zugänge

• Methoden: 1) FIDO2, 2) TOTP, 3) Push (Number-Match); SMS nur Notfall

• Recovery: 2 Wege (Backup-Codes + 2. Faktor), verifiziertes Helpdesk-Verfahren

• Break-Glass: 2 Accounts, offline dokumentiert, streng protokolliert

• Lifecycle: On/Offboarding, Gerätewechsel, regelmäßige Reviews

Technische Umsetzung (kurz & praxistauglich)

• Entra ID/M365: Conditional Access (User/App/Standort/Risiko), Legacy-Auth aus, PIM für Admins

• Google Workspace: MFA verpflichtend, Context-Aware Access

• VPN/Firewall: MFA am Gateway (RADIUS/SAML/OIDC); kein Direkt-RDP ins Internet

• SaaS: SSO zentralisieren; MFA auf IdP-Ebene; Shadow-IT abbauen

Rollout in 7 Schritten (ohne Reibung)

1) Asset & Risiko

Benutzer, Systeme, Zugänge, Ausnahmen erfassen.

2) Policies

Methoden, Ausnahmen, Recovery, Break-Glass definieren.

3) Pilot

IT + Key-User, Feedback-Schleife, Doku.

4) Kommunikation & Schulung

Kurz-Guides, 10-Min-Video, Helpdesk-Skript.

5) Stufenweiser Rollout

Abteilung für Abteilung, feste Zeitfenster.

6) Monitoring

Fehlversuche, Geovelocity, neue Geräte, ungewöhnliche Zeiten.

7) Härtung

Legacy-Auth aus, SMS nur Notfall, FIDO2 bevorzugen, Reviews.

Executive Checklist (IT-Leitung / Geschäftsführung)

MFA pflichtig für alle – zuerst Admins & Remote-Zugänge.

FIDO2/WebAuthn bevorzugen; TOTP als Standard; Push nur mit Number-Matching.

Conditional Access aktiv, Legacy-Auth deaktivieren.

Recovery & Break-Glass definiert, dokumentiert, regelmäßig getestet.

SSO zentralisieren; SaaS-Zugriffe am IdP absichern; Shadow-IT minimieren.

Wir planen Richtlinie, Technik & Rollout gemeinsam mit Ihrem Team – sicher, akzeptiert und ohne Produktivitätseinbruch. Sicherheits-Check anfragen

[/et_pb_code][/et_pb_column][/et_pb_row][/et_pb_section]