Authentication Server

Authlogics Authentication Server provides a cost effective, secure and robust interface to manage user authentication. It co-ordinates requests with user identity information stored in Microsoft Active Directory or Sql Server and provides web applications for help desk employees to provision and manage user accounts. Users are able to update AD passwords and enable soft token devices through the Self Service Portal. A web API is also provided to enable flexible integration with 3rd party applications.

Authentication Server provides a complete cost effective multi-factor authentication, password replacement, and single sign-on authentication solution for traditional desktops, over the phone, in the browser or from any device.  It was engineered from the ground up with the belief that good security practices are achieved by creating products that are simple to configure and use, without loss of flexibility or accountability.

Features

  • Traditional multi factor authentication
  • Device-less 1.5 factor authentication
  • Multiple authentication technologies
  • Two-Way ID
  • Password replacement
  • Single sign on to Azure and cloud
  • User self service with AD password reset
  • Full API integration
  • High availability multi master deployment
  • Easy to deploy and use
  • Advanced management tools
  • Simple per using licensing

Technical Specifications

Authlogics Authentication Server is a software only solution which can be installed onto any Microsoft Windows Server 2008 R2 or higher, and is well suited to virtualisation; no dedicated hardware appliance is required. Multiple servers can be installed for high availability at no extra cost.

Both Active Directory (AD) and Microsoft SQL Server are supported as identity databases. AD is recommended for most scenarios especially if the user accounts already exist in AD. Although data is stored directly in AD, no schema extensions are required. SQL Server is recommended for hosting environments or where AD is unavailable. AD is currently required for Single Sign On via ADFS. Information is secured using FIPS 198 & 180-3 compliant cryptography.

Simultaneously provision and manage multiple users through the intuitive MMC snap-in interface – 10000 users can be provisioned in under 15 minutes. Role-based access permissions determine who can perform which tasks, while extensive logging ensure that everything is tracked to satisfy auditing requirements. Users can securely reset AD passwords and manage their account via the Self Service Web Portal included with the server.

Authlogics Authentication Server supports multiple varied and flexible MFA scenarios and authentication types, such as traditional SMS message-based 2FA or more secure OATH (Open AuTHentication) compliant (RFC 4226 & 6238) protocols, as well as transaction signing, via the free Authlogics Authenticator soft token app. A user can have up to 10 soft token devices at once and they work 100% offline.

Agents are provided at no additional cost to support improved Windows Desktop Login and Remote Desktop Login processes, as well as cloud single sign in via the ADFS agent, and support for RADIUS. Additional integration into 3rd party solutions is available via web service or through direct API calls.

Authentication Types

Authlogics Server works with logon agents and custom integrations to provide three different and complementary authentication technologies. Use PINgrid, PINphrase and PINpass to deliver two-factor, one-and-a-half factor or multi factor soft-token and token-less, one time code authentication capabilities. They provide the IT department increased security combined with ease of administration, without the associated costs of purchasing and managing a traditional hard-token based system.

iPhone 7 PINgrid 2 Factor Authentication

PINgrid is a simple-to-use but robust authentication technology which uses a secret user generated shape or pattern to generate a one time code. Your pattern remains secret but the code it generates changes every time you logon.

iPhone 7 PINphrase 2 Factor Authentication

PINphrase challenges the user to provide random characters from a memorable phrase previously provided by the user. PINphrase is the only off-the-shelf solution that enables an organization to implement the ‘memorable information’ form of authentication, popularized by retail banks.

iPhone 7 PINpass 2 Factor Authentication

PINpass is a simple to use OATH compliant 2 Factor Authentication used to implement a 100% standard security solution. Use PINpass to provide One Time Pins on the go without the cost and complexity of hardware token OATH solutions.

Licencing and Pricing

We follow a clear, simple licensing model with a single per-user monthly subscription cost. There are no hidden fees or additional costs, and you can optionally increase the level of support from our Basic 8 x 5 to Premium 24 x 7 packages.

Authlogics Authentication Server can be installed on multiple servers without additional cost. The user licence includes use of Windows Desktop Logon Agent, Remote Desktop Agent, access to Azure, Office 365 and cloud logon via single sign-on, and use of the Authlogics Authenticator app.

Pricing becomes more cost effective the more user licences are purchased. Preferential pricing and NFR licences are available for managed service providers and partners.

Getting Started

The requirements for installing and using Authentication Server are as follows (for more information see the Installation and Configuration Guide) :

  • Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2*
  • Microsoft Active Directory OR
  • Microsoft Sql Server OR
  • Sql Server Express (included in installation, not available for Server 2008 R2)

Click on an icon or link below to begin a download or watch a video