Authlogics Multi-Factor Authentication

Authlogics MFA is a complete and easy to deploy Multi-Factor Authentication, password replacement, and single sign-on solution for on-premises and Cloud Applications. Our rapid deployment and multi-token and tokenless technology approaches have helped customers move beyond passwords to a simpler and more secure environment.

More choices: Authlogics MFA provides many authentication factors and technologies to choose from which can include various combinations of “something you know”, “something you have”, “something you are” and “something you are doing”.

More use cases: Our unique Deviceless OTP technology sets us apart as we can provide an alternative to passwords without the overhead of MFA and device management. This can be stepped up to full MFA per-user or per-application as needed. This makes accessing apps easier for users with a consistent experience.

Fewer passwords: There are lots of MFA solutions on the market, however many of them only provide a 2nd factor of authentication and rely on a legacy password or PIN as the 1st factor. If, like many organisations, you are struggling with password-based security simply adding a 2nd-factor bandage isn’t good enough. Authlogics can secure existing passwords as well as provide MFA that does not require a PIN or password at all.

Product Highlights

  • Quick deployment
  • Easy to use – no password required
  • Deviceless OTP, 2 and 3 factor risk-appropriate security
  • Flexible token type choices on a per-user basis
  • 10 MFA tokens per user
  • Password replacement solution
  • User self-service provisioning and AD password reset
  • On-premises and Cloud
  • Easy side-by-side migration from other vendors
  • Bulk user enrolment
  • IFTTT Automation and orchestration via Web API
  • Secure Password Vault for SSO
  • Multiple agents for 3rd party integrations
  • SIEM compatible logging

Why choose Authlogics MFA?

Directory Services

Our MFA integrates with your existing Active Directory without setting up a new database or syncing data to a public Cloud. It is your data and you should be in control of where is it kept. This significantly reduced the directory service management burden and means your MFA users are already half set up and ready to go.

 

Deployment

Our MFA is delivered as a software-only solution which can be installed on-prem or in a private Cloud and is ideal for virtualisation. Users can be bulk provisioned in minutes and user self-service registration of MFA tokens further streamlines the process. Furthermore, each user can have up to 10 MFA token at a time at no extra cost.

Logon Processing

The ability to process logins is critical and service availability is key. With Authlogics MFA you can run an unlimited number of Authlogics Authentication Servers for high availability or regional purposes at no extra cost.

 

App integration

The Authlogics Authentication Server can integrate with existing remote access gateways and networking equipment via RADIUS for MFA, as well as processing AD password request. Cloud connectivity is critical so SSO and federation are supported through industry standards such as SAML 2.0 and OpenID Connect. Further Authlogics System Agents are available to seamlessly integrate with 3rd party systems where standards are not available.

MFA Authentication Technologies

PINgrid

PINgrid is a simple-to-use but robust authentication technology which uses a secret user-generated shape or pattern to generate a one time code. Your pattern remains secret but the code it generates changes every time you logon.

PINphrase

PINphrase challenges the user to provide random characters from a memorable phrase previously provided by the user. PINphrase is the only off-the-shelf solution that enables an organisation to implement the ‘memorable information’ form of authentication, popularised by retail banks.

PINpass

PINpass is a simple to use OATH compliant two-factor authentication used to implement a 100% standard security solution. Use PINpass to provide One Time Pins on the go without the cost and complexity of hardware token OATH or OTP solutions.

Biometrics

In addition to supporting PINgrid and PINpass, the Authlogics Authenticator Mobile App integrates with device biometrics to provide a ‘something you are‘ factor. It is compatible with face and fingerprint on iOS and Android devices and can be centrally enabled via policy.

USB Hardware Token

Yubikey 5

Yubikey prevents unauthorized access by requiring the physical presence of the key to log in to a device. YubiKey can be configured as ‘something you have‘ as part of a traditional multi-factor authentication process, or as password replacement, or a mixture of both.

SMS & Email

iPhone 7 PINpass 2 Factor Authentication Pre-Send

SMS/Text and email delivery of codes is a very common MFA method despite NIST downgrading SMS OTP security level to “Restricted” due to its exposure to public phone networks. Authlogics can send PINgrid, PINphrase and PINpass codes/challenges over SMS and has built-in support for many international SMS gateway providers.

Authentication Technology vs Factors

Authlogics Multi-Factor Authentication works with multiple and complementary authentication technologies. Use PINgrid, PINphrase, PINpass, Biometrics or Yubikey to deliver Single-Factor, Deviceless OTP or Multi-Factor Authentication in multiple combinations to total flexibility. Standard PIN codes and Active Direcotry passwords are also supported.

For example, 3 Factor Authentication can be achieved by requiring PINgrid on a Mobile App with biometrics enforced. In this case, the pattern is ‘something you know’, the phone is ‘something you have’ and the biometric is ‘something you are’ – all without a password.

Getting Started

The requirements for using Authlogics Multi-Factor Authentication are:

  • Installing the Authlogics Authentication Server are as follows:
    • Windows Server 2019, 2016, 2012 R2 or 2012
    • Microsoft Active Directory
  • Deploy any required system agents

Click on an icon or link below to begin a download or watch a video.

Have a question about Multi-Factor Authenticaiton, Deviceless OTP or compliance?