FEATURES

Directory Integration

   SAML 2.0 IdP
   primary, secondary, and tertiary directory configuration
   h
ardened transport security options including PKI and X.509

SurePassID seamlessly adds MFA to Active Directory and other directory services

SurePassID-Directory-Integration-Image-4
DIRECTORY INTEGRATION

Active Directory (AD) and Azure Active Directory (Azure AD)

Active Directory (AD) is a Microsoft technology that allows system administrators to create and manage domains, users, and objects within a network. It is a primary feature of Windows Server, an operating system that runs both on-prem and in the cloud.

SurePassID Authentication Server can synchronize with single or multiple on-prem Microsoft Active Directory domains or cloud-hosted Azure Active Directories. Imported information reflects the latest adds, changes, and deletes. Using synchronization, user account provisioning and deprovisioning can be automated to increase efficiency.

SurePassID can be configured to use AD as a primary directory, or SurePassID can function as a primary directory where authentication schemes require it. SurePassID Universal MFA uses https for transport security by default. PKI and X.509 certificates can be used to increase security.

Microsoft-Active-Directory-Azure-AD
Third-Party-directories2-1
DIRECTORY INTEGRATION

Third Party

Third Party directory services are custom software programs that manage domains, users, and/or objects within an enterprise. Typically deployed in the cloud, these directories may be used in conjunction with Active Directory (AD) or Azure Active Directory (Azure AD) or may replace the Microsoft directory layer entirely.

SurePassID Authentication Server integrates with Third Party directory services as a SAML 2.0 IdP – both on-prem and in the cloud. SurePassID can import users from such directories and reflect the latest adds, changes, and deletes. Using synchronization, user account provisioning and deprovisioning can be automated to increase efficiency.

SurePassID supports many different MFA process flows for Third Party directory services and can function as a primary, secondary, or tertiary SAML 2.0 IdP accordingly.

DIRECTORY INTEGRATION

Lightweight Directory Access Protocol (LDAP)

Lightweight Directory Access Protocol (LDAP) is an open, vendor-neutral, industry standard application protocol for accessing and maintaining distributed directory information services. LDAP is typically used by Linux and Unix directory services. LDAP is maintained as RFC 4511.

SurePassID Authentication Server has built-in support for on-prem or cloud LDAP directories. SurePassID can import users from LDAP directories and be synchronized to reflect any changes, eliminating the risks of process gaps and automating administration.

SurePassID can be configured to use a LDAP directory as primary, or SurePassID can function as a primary or tertiary directory with an LDAP directory as secondary where authentication schemes require it. SurePassID uses https for transport security by default. PKI and X.509 certificates can be used to increase security.

LDAP-Lightweight-Directory-Access-Protocol2
Third-Party-directories
DIRECTORY INTEGRATION

Human Resources

Human Resources directories are custom software programs that manage human capital within an organization. Deployed on-prem or in the cloud, these directories are typically used in conjunction with Active Directory (AD) or Azure Active Directory (Azure AD) or other directory services to add capabilities to user management, such as workforce lifecycle management.

SurePassID Authentication Server provides specialized integrations with Workday, Oracle Human Capital Management (HCM), SAP SuccessFactors, and other leading third-party directories. This ensures your MFA is always synchronized to your human capital management system, eliminating process gaps in user account provisioning and deprovisioning that cyber attackers could exploit.

Third Party directory networks have additional complexity given their additional integration with AD or other directory services. SurePassID supports many different MFA process flows and can function as a primary, secondary, or tertiary directory accordingly.

DIRECTORY INTEGRATION

SurePassID Directory (Microsoft SQL Server)

SurePassID Authentication Server has built-in directory services which are available in on-prem and cloud deployments. This optional capability enables SurePassID to address the widest range of deployment requirements and complex MFA process flows, functioning as a primary, secondary, or tertiary directory depending on your requirements. It also enables SurePassID to function as a complete solution for small organizations which lack a directory server or services of their own.

All SurePassID Directory functionality is accessible via the administrator portal or invoked via API. Full technical documentation is available to customers, trial users, and upon request.

SurePassID_chiclet_footer3-1

An MFA solution should be a game changer

See how SurePassID can help you authenticate anywhere, eliminate passwords, and use one solution.