It’s been almost a year since we introduced the industry’s first adaptive Identity-as-a-Service (IDaaS) solution: SecureAuth Cloud Access. By combining adaptive and multi-factor authentication (MFA) with single sign-on (SSO), Cloud Access is the most secure way to manage enterprise SaaS adoption while controlling access to thousands of apps. As we near our one-year anniversary, let’s take a look at some of the latest enhancements and innovations that make Cloud Access the leader in cloud-based adaptive access control:
The VPN is a great starting point for improving identity security. Cloud Access makes it easy to implement multi-factor authentication (MFA) and adaptive authentication for VPN servers and other products that use the RADIUS protocol including Cisco, Palo Alto, Citrix. Cloud Access RADIUS capabilities deploy in minutes with a simple configuration interface and allows customized authentication workflows and policies for each different RADIUS client / VPN Server.
Cloud Access for iOS
Users can access applications and credentials managed by Cloud Access on their iOS mobile devices, making it easier to sign into mobile versions of their applications. This feature allows you to put the Cloud Access Single Sign-on (SSO) portal in your pocket.
Country Change Rule
This new rule triggers when a user connects from a country that is different than their last login, enhancing authentication security with an additional layer of geographic analysis. This new adaptive feature is a great addition to other location-based analysis like geo-velocity, which tells if an impossible travel event occurred and geo-fencing, which treats users within and outside a defined geography.
Users who frequently get on and off a VPN won’t be prompted unnecessarily for MFA steps by geographic rules because it looks like they are changing physical location (when they really aren’t). When a user connects to a VPN, their IP address changes, often to a location that is physically distant from them, even though they have not physically moved. This can cause “false positive” triggers in various geography-based rules, resulting in unnecessary MFA prompts for legitimate users.
Email-based Password Reset
Cloud Access now integrates more seamlessly with SecureAuth IdP for self-service password reset in hybrid deployments, and now features an email-based password reset option. Legitimate users forget passwords and unwittingly lock accounts, these options allow users to readily reset their passwords without opening a helpdesk ticket.
These are just some of the enhancements available in SecureAuth Cloud Access today. To learn more about cloud-based and hybrid identity access management, visit www.secureauth.com/cloud-access and get started with a free trial today!