New features of Axidian Access 7.1 are:
Authentication using mobile application and push notifications, based on the Indeed AirKey Cloud product.
The Axidian Access is now integrated into our Indeed AirKey Cloud product. The latter is a client – server platform, where the client is mobile application running under iOS or Android operating system.
To migrate to this technology, you would have to deploy the Indeed AKC server, install Indeed AirKey Cloud Provider at the Axidian Access server, as well as to install the mobile application itself. A push notification appears on the device screen during authentication.
A tap on the notification would open the Indeed AirKey application, that displays additional information and buttons to confirm or decline the authentication request.
Thus, the technology is more secure alternative to SMS. As distinct from SMS message, where the information is sent in non-secure form, Indeed AirKey Cloud encrypts all data sent to the user smartphone with asymmetric algorithms. This guarantees that the data can be viewed only on the device it is intended for.
Hardware TOTP Provider
The new version also features support of hardware TOTP tokens. Such devices are present, for example, in eToken PASS series.
The following algorithms are supported:
- HMACSHA1
- HMACSHA256
- HMACSHA512
Using the Indeed SAML IdP to authenticate in administration console and Axidian Access self-service
Besides standard Windows authentication, the Indeed Enterprise Management Console and Indeed Self Service now support authentication via Indeed SAML IdP.
The technology has the following benefits:
- Authentication can be performed with any method supported by AM 7.1
- It is possible to request several authenticators from user at the same time
- Scenarios of operation beyond Active Directory domain are supported
The following changes should be highlighted among other modifications made:
- A separate Self Service web application is now available to publish data beyond the corporate infrastructure via Internet.
- The layout of SAML IdP and IIS Extension authentication pages is now unified.