https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-additional-authentication-methods-for-ad-fs
Guide to enable Multi-factor autheitication for Active Directory Federation Services (AD FS) in Windows Server. Also provide guides for use of common Third-party authentication methods (i.e., Duo, Akamai, RSA, etc.,)
https://learn.microsoft.com/en-us/microsoft-365/admin/security-and-compliance/set-up-multi-factor-authentication?view=o365-worldwide
Guide for enforcing MFA for Microsoft 365
https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63b.pdf
This NIST Special Publication provides technical requirements for federal agencies implementing digital identity services.
https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Authentication_Cheat_Sheet.md
This cheat sheet from OWASP provides general authentication guidelines.
https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/03-Identity_Management_Testing/04-Testing_for_Account_Enumeration_and_Guessable_User_Account
The scope of this test is to verify if it is possible to collect a set of valid usernames by interacting with the authentication mechanism of the application.
https://www.rcdevs.com/products/openotp/
OpenOTP is a phishing-resistant MFA solution.
https://www.rsa.com/products/securid/
Secure access to your extended enterprise with RSA SecurID Access, the leading multi-factor authentication and identity assurance solution.
https://assets.contentstack.io/v3/assets/blt36c2e63521272fdc/blta5be14c7136a535f/5e9dde89db124263e8afce3d/password_construction_guidelines.pdf
This SANS guideline provides best practices for creating secure passwords.
https://assets.contentstack.io/v3/assets/blt36c2e63521272fdc/blt56ee6e15d78eb882/5e9ddf05d5a1cb709eee4a22/password_protection_policy.pdf
This is a sample password protection policy from SANS.
https://www.sans.org/white-papers/118/
This SANS whitepaper generalizes several authentication methods and authentication protocols.