Optimal Authentication Service™
The Optimal IdM authentication-as-a-service (AaaS) offering, called The Optimal Authentication Service™ (OAS), is a hosted RESTful web service that provides customers with the ability to perform various types and levels of authentications including single and multi-factor.
The service may be deployed in any data center and is offered in a multi-tenant environment as well as in an isolated/dedicated environment. OAS can easily integrate into your application using the RESTful call or by using the Optimal IdM .NET SDK or jQuery plugin.
Because the service is available via industry standard REST calls, both web and non-web applications may easily add MFA capabilities, including password-less options. As a MFA service, OAS helps prevent phishing and man-in-the-middle attacks by delivering push notifications to a user’s registered mobile device which optionally works with fingerprint enabled systems. OAS includes other MFA options like Time-based One-Time Password (TOTP) and traditional One-Time Passcodes (OTP) that can be sent via Short Message Service (SMS), Email or voice calls.
Each can be used as a stand-alone option or in conjunction with a complete Identity Access and Management (IAM) program. When integrating with an existing system, you can leverage OTPs via SMS, Email or voice without storing any information about the user in the cloud service. When using TOTP or push notifications, only device information is stored, which reduces the amount of personal identifiable information that is needed. The service can also be used to access applications in a password-less method by sending a push notifications to a mobile device for logins.
When OAS is combined with the Optimal GINA™ plugin (Windows login), you can easily add MFA to desktops or servers. OAS is also fully integrated into The OptimalCloud™, a complete Identity-as-a-Service (IDaaS) solution with delegated administration and workflow capabilities.
The Optimal Authentication Service includes:
- Password-less Access method
- Basic Authentication (username & password)
- Strong-Authentication via E-Mail (MFA)
- Strong-Authentication via SMS/Text Message (MFA)
- Strong-Authentication via VOICE (where a call is placed to a number) (MFA)
- Strong-Authentication via TOTP (MFA)
- Strong-Authentication via PUSH (alert to a mobile device)(MFA)
- Basic Authentication + Strong-Authentication via PUSH (alert to a mobile device)(Fingerprint authentication to iOS and Android)(MFA)
For more information, contact Optimal IdM today.