2FA one

The multifunction platform of authentication of 2FA one from company 2FA represents the server - a client system which supports several methods and devices for logical access at once: proximity cards and magnetic stripe cards, contact smart cards and PKI tokens, biometrics on fingerprints and one-time passwords on hardware tokens and also reserve authentication on control questions.

The advantage of solution 2FA ONE is expansion of a scope of the proximity cards which are already used at the enterprises for physical access (ACS) for the organization of the systems of two-factor authentication (the card + PIN, the card + a fingerprint) to IT systems of the company, for example, for an input in OC Windows from the workstation, to a corporate domain and working applications.

Use of the uniform access card to the premises for identification of the employee in a workplace provides transition from one-factor identification "login password" to multifactorial "the access card and a PIN code for verification" that considerably reduces costs and raises the security level to information resources of the company.

2016: 2FA one v4.7

In release of v4.7 of a product the Password as PIN function which allows to use the system (domain) static password already known to users as the PIN code practically for all the methods of two-factor authentication supported in a system, including on contact or to contactless smart cards is provided.

The innovation functionality of Password as PIN is important in the context of the general security of a system. On the one hand, operators of 2FA One with appropriate authority will be able to personalize now authentication devices (for example, proximity cards) for specific users at the station of release without need to set for them an additional PIN code, so to prevent a possible compromise of the last at this stage.

The new functionality is intended for optimization of transition from simple authentication by system passwords to secure logical access using the solution 2FA One.

Thanks to the solution employees will not need to set and remember new static data as the PIN code, and to use already known system passwords.

On the other hand, for such methods as authentication in Windows on the proximity card or fingerprints, the Password as PIN function excludes automatic substitution (as a result, storage and potential interception) the domain password at the level of the system in the course of an input in it. The user himself, in this case, enters system the password, for example, after applying of the card to the reader.

Let's remind that in infrastructure Microsoft Windows completely it is possible to exclude use of domain passwords (both at the level of users, and at the level of system calls) only when using contact smart cards and infrastructures PKI in a corporate directory service that imposes the additional level of complexity to the organization of corporate architecture, and it is not always acceptable for customers.