DEMO BLOG

Desktop authentication – Microsoft Windows and macOS native login via OTP

KeyIdentity Authentication Provider – strong authentication for everyday life

The majority of desktop authentications still rely entirely on password logins. Enhance native Microsoft Windows and macOS logins via strong authentication and secure your Linux servers.

KeyIdentity Authentication Providers – Strong authentication starting with the first login

The KeyIdentity Authentication Providers allow for direct and native integration of strong authentication into your desktop and server systems. They can be used locally and also in remote desktop environments. All tokens supported by the KeyIdentity LinOTP MFA platform can be used. Combined with KeyIdentity's state-of-the-art push and QR tokens, they allow you to meet high usability and security requirements for your environment.

By using the KeyIdentity push token your users can combine the high usability of modern smartphones with strong transaction security. In just a few steps, users can confirm a login, while in the backend the binding of the login to cryptographic information about the interaction guarantees high traceability and continuous security.

If your users are travelling or working without a direct connection to the central infrastructure, the integration of the KeyIdentity QR token offers a secure and easy solution. In addition to strong transaction binding, the technology of the QR token, based on public-private key procedures, allows for secure offline authentication. Logins can be performed securely without storing secrets on the device, which is to be authenticated.

Data sheet

More information about the KeyIdentity Authentication Provider

KeyIdentity Authentication Provider for Microsoft Windows

  • Native integration into the Credential Provider Login Infrastructure of Microsoft Windows
  • Enhances a Windows login with the security of multi-factor authentication
  • Broad support of different token types via integration into the KeyIdentity LinOTP MFA platform:
    • KeyIdentity push tokens
    • KeyIdentity QR tokens, including offline authentication
    • Hardware tokens (OATH HOTP/TOTP, Yubikey)
    • Soft tokens (OATH HOTP/TOTP)
    • Out-of-band tokens (SMS, e-mail)
  • Rollout based on group policies or as a simple installation can be fully automated
  • The connection to central Active Directory systems is kept in place and single sign-on scenarios can continue to be used

KeyIdentity Authentication Provider for macOS X

  • Native integration as an authentication plugin into the login infrastruktur of macOS
  • Enhances a macOS login with the security of multi-factor authentication
  • Broad support of different token types via integration into the KeyIdentity LinOTP MFA platform:
    • KeyIdentity push tokens
    • KeyIdentity QR tokens, including offline authentication
    • Hardware tokens (OATH HOTP/TOTP, Yubikey)
    • Soft tokens (OATH HOTP/TOTP)
    • Out-of-band tokens (SMS, e-mail)
  • The connection to central systems is kept in place and single sign-on scenarios can continue to be used

KeyIdentity Authentication Provider for Linux

  • Native integration into the Pluggable Authentication Module (PAM) login infrastructure
  • Enhances all interactive PAM logins with the security of multi-factor authentication
  • Broad support of different token types via integration into the KeyIdentity LinOTP MFA platform:
    • Hardware tokens (OATH HOTP/TOTP, Yubikey)
    • Soft tokens (OATH HOTP/TOTP)
    • Out-of-Band tokens (SMS, e-mail)
  • Can be provided as Debian and RPM packages for systems based on Debian, Ubuntu and RHEL
  • The connection to central systems is kept in place and single sign-on scenarios can continue to be used

Test trial

Convince yourself and test the KeyIdentity MFA platform for free!