.Net SAML Consumer
This Value-Added Module enables SecureAuth customers to integrate the .NET SAML Consumer into their current Internet Information Services (IIS) environment.
In order to perform this integration, you need the following components:
- IIS Server
- SecureAuth IdP setup in your environment or an accessible environment
- .NET SAML Consumer compressed file
- Valid X509 certificate to sign the assertion
- .NET Framework 4.5 or later
ADFS 2FA Module
Curious about the SecureAuth ADFS Two-Factor Adapter Value-Added Module (VAM), and how to configure it for use in an ADFS 3.0 environment? The SecureAuth ADFS Two-Factor Adapter is a Multi-Factor Authentication Provider that uses the SecureAuth Authentication APIs to send One-Time Passwords (OTPs) for use in authentication by an ADFS Federated application.
The SecureAuth ADFS Two-Factor VAM enables current ADFS customers to add strong authentication to their existing ADFS integrations. Many customers have comprehensive ADFS implementations that provide the convenience of SSO access but lack strong security, thereby putting all their applications at risk from a single breach. With this add-on module, over twenty forms of strong authentication can be enabled as well as advanced IP threat analysis.
CAS 2FA Plugin
The SecureAuth Central Authentication Service (CAS) Installer provides robust two-factor authentication (2FA) for CAS clients. After successful primary authentication through the CAS Server, users must successfully complete a secondary authentication through SecureAuth IdP.
The Epic CareLink Value-Added Module (VAM) provides installation and configuration assistance to enable Epic CareLink system applications to access SecureAuth IdP for authentication and authorization.
SecureAuth’s Epic ePCS Value-Added Module (VAM) enables seamless integration between SecureAuth IdP’s Multi-Factor Authentication (MFA) and Epic’s Hyperspace platform for the E-Prescribing of Controlled Substances (ePCS) system. Using this integrated package, qualified physicians can write prescriptions quickly and securely while meeting DEA requirements for e-prescribing.
SecureAuth’s flexible authentication framework allows providers to deploy DEA compliant Two-Factor Authentication (2FA) in ways that are not intrusive on physicians; and in many cases SecureAuth can actually optimize workflows by reducing clicks. Its aim is to provide the quickest way to ensure that the accessing physician is the one authorized to approve the prescription, per DEA standards.
Federation Adapter (formerly OIDC Consumer)
The Federation Adapter Value-Added Module (VAM) securely connects the SecureAuth IdP with applications that do not support OpenID Connect (OIDC).
SecureAuth IdP does not talk directly to non-OIDC-compliant applications since IdP uses ID tokens and non-OIDC applications utilize FBA cookies. To circumvent this, the Federation Adapter (OIDC Consumer) serves as the intermediary between these non-OIDC applications and IdP by translating the IdP’s ID tokens into FBA cookies that non-OIDC applications can interpret.
IdP Health Analyzer
The SecureAuth IdP Health Analyzer tests SecureAuth Realms to gather the following information, and generate an HTML report based on the results. The elements tested include:
- Average health and security score of all realms combined
- Number of Identity Manager (IdM) Realms
- Number of SSO Realms
- Number of Network Realms
- Machine Name & Host Name
- Whether the machine is joined to a domain
- Whether the server has an enabled firewall
- IPv4 and Ipv6 address
Java SAML Consumer
The Java SAML Consumer Value-Added Module (VAM) is a method used for deploying the Java version of the SAML consumer value-added module (VAM) using the Java-compliant open source web environment Tomcat.
The SecureAuth Authenticator can be used to authenticate users accessing protected web applications deployed in a Tomcat instance using a Tomcat valve. If the user is not authenticated, it sends a request to the SAML Handler to authenticate the user. The Authenticator also manages Single Sign On (SSO) between protected web applications.
OAM 2FA Adapter
The OAM 2FA Plug-In Value-Added Module (VAM) connects SecureAuth IdP with Oracle Access Manager (OAM) and its supporting servers for Two-Factor Authentication (2FA).
PeopleSoft Value-Added Module
The The PeopleSoft Value-Added Module (VAM) provides deployment and configuration on the SecureAuth IdP appliance to enable authentication and authorization of applications on PeopleSoft.
PingFederate 2FA Plugin
The PingFederate 2FA Value-Added Module (VAM) integrates the SecureAuth IdP and PingFederate servers (version 8.3 or later). This integration enables customers of PingFederate to add SecureAuth adaptive access control to their SSO solution for even stronger identity security.
The integration relies upon a SecureAuth PingFederate two-factor authentication (2FA) value- added module (VAM) — a piece of software that enables SecureAuth IdP to talk with a PingFederate server through an exchange of SAML code.
NOTE: This guide pertains to integrations using PingFederate version 8.3 and later.
The Radius 2FA Value-Added Module (VAM) (formerly called RSA Hard Token Migration Value-Added Module (VAM)) provides a migration path for our customers leading away from RSA security tokens and toward more advanced 2-factor authentication (2FA) methods. Customers can continue to use their existing RSA tokens when authenticating to SecureAuth IdP, allowing a phased retirement of the legacy hard token technology. This gives SecureAuth IdPs the ability to validate RSA soft and hard tokens by using the RSA RADIUS Validation client. Because the integration utilizes RADIUS, the Radius 2FA VAM can be used with RSA and other legacy hard token modules.
SecureAuth Access Gateway (SAAG) Value-Added Module
The SecureAuth Access Gateway Value-Added Module (VAM) is a breakthrough secure data access solution. Based on SecureAuth’s secure reverse-access technology, Access Gateway overcomes the challenges of today’s DMZ networks and network segmentation, prevents criminal application access, and protects classified networks within the enterprise infrastructure. SecureAuth’s secure front-end solution eliminates the need to store sensitive data in the DMZ, thereby reducing exposure to data breaches.
Acting as a single point of entry, SecureAuth Access Gateway provides an advanced workflow-enabled layer 7 proxy with reverse access technology to facilitate and control authentication and access control in a seamless and secure way. SecureAuth Access Gateway adds a revolutionary level of protection to applications by not only providing an identity through an advanced authentication process, but also by securing unauthenticated traffic from ever reaching back-end application servers.
SecureAuth Access Gateway introduces universal authentication and legacy application support without using agents or clients. This enables the streamlining of authentication across the entire organization for any type of application, even if it doesn’t support identity federation. This includes NTLM, Kerberos and Header authentication.
Focused on providing security solutions for the enterprise market, SecureAuth enables organizations to benefit from enhanced productivity, efficiency, heightened security, and improved regulatory compliance.
SLO (Single Logout)
The Single Log-Out (SLO) Value-Added Module (VAM) enables applications using SAML Logout to access SecureAuth IdP for authentication and authorization, and supports cascading logout. When a user clicks a logout link in a relying application that is in session with other relying applications, it will send a logout request to the SLO endpoint. In turn the SLO service will go through all other applications that have been logged in during the current session, and dispatch a logout assertion to each relying application endpoint.
This VAM can be added to the SecureAuth IdP appliance using an installer that supplements the appliance with all necessary files and modifies the configurations accordingly.