New features of Axidian Access 7.1 are:
Authentication using mobile application and push notifications, based on the Axidian AirKey Cloud product.
The Axidian Access is now integrated into our Axidian AirKey Cloud product. The latter is a client – server platform, where the client is mobile application running under iOS or Android operating system.
To migrate to this technology, you would have to deploy the Axidian AKC server, install Axidian AirKey Cloud Provider at the Axidian Access server, as well as to install the mobile application itself. A push notification appears on the device screen during authentication.
A tap on the notification would open the Axidian AirKey application, that displays additional information and buttons to confirm or decline the authentication request.
Thus, the technology is more secure alternative to SMS. As distinct from SMS message, where the information is sent in non-secure form, Axidian AirKey Cloud encrypts all data sent to the user smartphone with asymmetric algorithms. This guarantees that the data can be viewed only on the device it is intended for.
Hardware TOTP Provider
The new version also features support of hardware TOTP tokens. Such devices are present, for example, in eToken PASS series.
The following algorithms are supported:
- HMACSHA1
- HMACSHA256
- HMACSHA512
Using the Axidian SAML IdP to authenticate in administration console and Axidian Access self-service
Besides standard Windows authentication, the Axidian Enterprise Management Console and Axidian Self Service now support authentication via Axidian SAML IdP.
The technology has the following benefits:
- Authentication can be performed with any method supported by AM 7.1
- It is possible to request several authenticators from user at the same time
- Scenarios of operation beyond Active Directory domain are supported
The following changes should be highlighted among other modifications made:
- A separate Self Service web application is now available to publish data beyond the corporate infrastructure via Internet.
- The layout of SAML IdP and IIS Extension authentication pages is now unified.
