Identity under lockdown.

In today’s world of ubiquitous network connectivity and constant threats from inappropriate data usage, it is more important than ever before to ensure that every single person accessing your network, server, or data assets is appropriately authorized to do so.

In the past, a username and password may have been sufficient for authorization. The problem with this approach is that these two pieces of information are things someone “knows,” which makes it possible for the information to be stolen or cracked. RapidIdentity increases security by adding additional credentials in the form of something that you “have,” such as a temporary code sent to your phone, or something you “are”, such as a biometric element (e.g., a fingerprint or retina scan).

multi-factor authentication
Multi-factor Authentication

Token-based systems are a common solution, but are expensive to procure and implement, and are a burden to maintain. Identity Automation’s multi-factor solution includes tokens sent via SMS or Google Authenticator, using the user’s cell phone as the delivery platform. This approach removes the hassle of maintaining a separate and dedicated token system and doesn’t require the user to carry and keep track of an additional piece of equipment. Our solution also leverages existing authentication mechanisms for the system that you are granting access to, thus eliminating the need to inject additional complexities into your environment.

RapidIdentity can support multiple MFA policies, each of which can include Access Control Lists (ACLs). When ACLs are defined, only users on the ACL can obtain access. Defining ACLs to one or more MFA policies reduces the likelihood of improper access and inappropriate data use further, since an attacker would need to have knowledge of both the organizational directory structure and the users assigned to designated groups.