Secret Server Feature

MULTI-FACTOR AUTHENTICATION

Use multi-factor with secret server for robust authentication

Multi-factor authentication is a login method based on something you know: your password; and something you have: a one-time token, for instance: an RSA-key.

The Challenge

When an administrator’s password is compromised, you need a way to ensure that access to your Secret Server password software is protected.

 

Why it's important

Secret Server holds some of your organization’s most sensitive data and access to it must be secure. multi-factor authentication supports many common providers in order to easily enable Secret Server. 

 

How we solve it

Multi-factor authentication ensures that even if a password is stolen, a malicious user can’t sign into Secret Server. It helps confirm a user's identity and prevents impersonation. 

Is your organization forced to meet regulatory compliance guidelines?

By using multi-factor authentication as part of the Secret Server login process you can solidify your information security practices.

Additional Information

Many multi-factor authentication solutions

You can use many different multi-factor authentication solutions including RSA and Smartphone apps such as Google authenticator, and Duo Security.

Secret Server also supports any multi-factor provider that provides a RADIUS interface. This is an industry standard implementation and most commercial two-factor vendors support RADIUS.

Duo Security supports push notifications directly to the user’s phone, as well as hardware based tokens such as YubiKey. If the user’s app or token isn’t available they can also receive a phone call or text message for out of band authentication.

Google authenticator

Google authenticator or any soft token app that supports TOTP (Microsoft Authenticator, Duo, Amazon MFA) can also be used. Soft tokens are a free and quick way to add additional security to your login process if no commercial multi-factor solution is available.

RADIUS support

Secret Server also supports any multi-factor provider that provides a RADIUS interface. This is an industry standard implementation and most commercial multi-factor vendors support RADIUS.




Benefits of multi-factor authentication

  • You can use your existing authentication infrastructure.
  • You can authenticate users before granting them access to Secret Server.
  • You’ll comply with information security policies.


4Passwords
Secret Server Hosting

Security Solutions as a service.
Maximize your password security,
Minimize your security risks.