Directory Integration

SurePassID seamlessly adds MFA to directory services

  • SAML 2.0 IdP – on-prem, private cloud (data center and hosted), and public cloud
  • Primary, secondary, and tertiary directory configuration for any MFA process flow
  • Hardened transport security options including PKI and X.509

DIRECTORY INTEGRATION

Active Directory (AD) and Azure Active Directory (Azure AD)

Active Directory (AD) is a Microsoft technology that allows system administrators to create and manage domains, users, and objects within a network. It is a primary feature of Windows Server, an operating system that runs both on-prem and in the cloud.

SurePassID Authentication Server can synchronize with single or multiple on-prem Microsoft Active Directory domains or cloud-hosted Azure Active Directories. Imported information reflects the latest adds, changes, and deletes. Using synchronization, user account provisioning and deprovisioning can be automated to increase efficiency.

SurePassID can be configured to use AD as a primary directory, or SurePassID can function as a primary directory where authentication schemes require it. SurePassID Universal MFA uses https for transport security by default. PKI and X.509 certificates can be used to increase security.

DIRECTORY INTEGRATION

Third Party

Third Party directory services are custom software programs that manage domains, users, and/or objects within an enterprise. Typically deployed in the cloud, these directories may be used in conjunction with Active Directory (AD) or Azure Active Directory (Azure AD) or may replace the Microsoft directory layer entirely.

SurePassID Authentication Server integrates with Third Party directory services as a SAML 2.0 IdP – both on-prem and in the cloud. SurePassID can import users from such directories and reflect the latest adds, changes, and deletes. Using synchronization, user account provisioning and deprovisioning can be automated to increase efficiency.

SurePassID supports many different MFA process flows for Third Party directory services and can function as a primary, secondary, or tertiary SAML 2.0 IdP accordingly.

DIRECTORY INTEGRATION

Lightweight Directory Access Protocol (LDAP)

Lightweight Directory Access Protocol (LDAP) is an open, vendor-neutral, industry standard application protocol for accessing and maintaining distributed directory information services. LDAP is typically used by Linux and Unix directory services. LDAP is maintained as RFC 4511.

SurePassID Authentication Server has built-in support for on-prem or cloud LDAP directories. SurePassID can import users from LDAP directories and be synchronized to reflect any changes, eliminating the risks of process gaps and automating administration.

SurePassID can be configured to use a LDAP directory as primary, or SurePassID can function as a primary or tertiary directory with an LDAP directory as secondary where authentication schemes require it. SurePassID uses https for transport security by default. PKI and X.509 certificates can be used to increase security.

DIRECTORY INTEGRATION

Human Resources

Human Resources directories are custom software programs that manage human capital within an organization. Deployed on-prem or in the cloud, these directories are typically used in conjunction with Active Directory (AD) or Azure Active Directory (Azure AD) or other directory services to add capabilities to user management, such as workforce lifecycle management.

SurePassID Authentication Server provides specialized integrations with Workday, Oracle Human Capital Management (HCM), SAP SuccessFactors, and other leading third-party directories. This ensures your MFA is always synchronized to your human capital management system, eliminating process gaps in user account provisioning and deprovisioning that cyber attackers could exploit.

Third Party directory networks have additional complexity given their additional integration with AD or other directory services. SurePassID supports many different MFA process flows and can function as a primary, secondary, or tertiary directory accordingly.

DIRECTORY INTEGRATION

SurePassID Directory

SurePassID Authentication Server has built-in directory services which are available in on-prem and cloud deployments. This optional capability enables SurePassID to address the widest range of deployment requirements and complex MFA process flows, functioning as a primary, secondary, or tertiary directory depending on your requirements. It also enables SurePassID to function as a complete solution for small organizations which lack a directory server or services of their own.

All SurePassID Directory functionality is accessible via the administrator portal or invoked via API. Full technical documentation is available to customers, trial users, and upon request.

FREQUENTLY ASKED QUESTIONS

FAQs about SurePassID and our Authentication Server solution

  • Software-as-a-Service (SaaS)
  • Windows Installer Package (Microsoft Windows Server 2008/2012/2016/2019/2022)
  • Virtual Machine (Microsoft Hyper-V)
  • Container (Docker/Kubernetes, Microsoft ACI, Amazon ECS)
  • Serverless/Function-as-a-Service (FaaS)
  • Embedded (8, 16, or 32-bit microcontrollers)

Cloud deployments can occur same day. On-prem deployments will vary depending on the complexity of your requirements. Regardless, our Customer Success team is with you every step of the way.

SurePassID is the most hardened authentication solution on the market. Customers choose us because we specialize in securing user access to mission-critical IT/OT systems and critical infrastructure. We never stop innovating to protect our customers from evolving cyberthreats.

As a SAML 2.0 IdP, SurePassID easily and seamlessly integrates with any on-prem (e.g. Ping Identity) or cloud-only (e.g. Okta) IAM solution.

  1. Unmatched on-prem and OT capabilities
  2. Outstanding technical support
  3. Unbeatable value

Visit https://www.surepassid.com/pricing for a complete guide to SurePassID Authentication Server pricing and features.

Discover why leading enterprises choose SurePassID Authentication Server

Talk to one of our MFA experts about your unique requirements. Or request a demo and see how easy it is to secure your universe of apps with SurePassID Authentication Server.