SecureAuth IEP
Solutions for Microsoft UAG

SecureAuth Delivers Strong Authentication for Microsoft UAG

Microsoft's Forefront Unified Access Gateway 2010 (UAG) delivers comprehensive, remote access from a wide range of applications and resources, especially SharePoint. UAG is the core component in Microsoft's strategy to provide secure application publishing that is integrated into the award winning TMG firewall. This combination of technology delivers a secure reverse proxy that is able to stop, inspect, and enforce authentication policies.

With ForeFront Microsoft has perfected a mechanism for securely deploying applications from traditional server attacks, but now a flexible authentication solution is required to meet the application security and regulatory requirements. For many the classic 'username and password' combination isn't going to be enough. Neither is a mono-configurable solution such as RSA SecurID. Enterprises need a flexible authentication solution that can be coupled with the application publication vehicle – a solution that can, according to rules, dictate the authenticate workflow.

Secure, Simple Access to Microsoft UAG

SecureAuth is an Identity Enforcement Platform (IEP) that secures and simplifies access to cloud, VPN, web, and mobile resources with integrated Authentication, SSO, and Identity Management Services. SecureAuth IEP is a tokenless, browser-based, bi-directional X.509 certificate authentication solution that integrates tightly with Forefront UAG 2010 to provide edge security, single sign-on, and configurable authentication that is commensurate with the resource being accessed. A turnkey solution, SecureAuth is the only tokenless, non-phishable authentication solution for UAG that mutually authenticates both the user and the server, in an easy to deploy manner.

SecureAuth IEP Highlights for Microsoft UAG

• Out-of-the-box integration to Microsoft's Forefront Unified Access Gateway 2010 (UAG) for same day deployment with configurable authentication to match the UAG resource:
  • X.509.v3
  • SMS OTP
  • Telephony OTP
  • E-Mail OTP
  • Help Desk
  • KBA
  • Static PIN
  • Password
• Bilateral authentication provides proven method to thwart phishing attacks.
• Supports multiple configured realms that match distinct UAG policies and easily configured mix-match options for authentication (X.509, SMS, Telephony, E-Mail, KBA, HelpDesk, Password).
• Supports important B2C/B2B application publishing concepts such as self-enrollment of 2-Factor credentials and 1-touch certificate revocation
• Integrates with existing enterprise data store, such as Microsoft Active Directory (LDAP).
• Supports Windows, Mac, iPhone/iPad, Android, Windows Mobile 7 clients, and other browser-based smart phones
• No tokens, data servers or additional infrastructure investment required.
• Eliminates need for administrator to deploy and upgrade end-user software.
• Only purchase one product to secure and simplify access to UAG, web, and cloud applications, as well as VPN and mobile resources.

Learn more about SecureAuth IEP