It is no secret that the modern workplace is evolving. As employees require access to more applications across multiple devices—from anywhere in the world—providing secure access can seem complicated. When you consider external security risks, the prospect of securing access may feel downright overwhelming. But, providing secure access to your employees and end-users doesn’t have to be a burden.
As we look to the future of the workplace, we anticipate that the current trend of connectivity will fundamentally change the way we all work. Today, ninety-three percent of CIOs believe technology is more complex, consisting of more apps, data, devices, and transactions. Looking ahead, another ninety-seven percent expect workplaces to be widely dispersed across geographies and timezones.
Our Fall ‘19 Release delivers new features and functionality that enable streamlined access to applications (anytime, anywhere), strengthen security and authentication, and support secure app development. These new features and functionalities span three categories:
2. unified access,
3. and developer tools.
We believe each of these tools will enable businesses to meet the demands of an increasingly connected workplace with security and simplicity.
What are we announcing?
Enhanced Security: Unlock the Future of Authentication
As a security-first company, fortifying access is our first priority. We believe multi-factor authentication (MFA) provides the strongest layer of security to protect against password attacks. In fact, MFA reduces the risk of password attacks by 99.9%. Our Fall ‘19 release includes several MFA enhancements and features that improve security and user experience by making available more options for authentication factors. These include:
- Email MFA: Enables the use of an email account as a second factor during user login, password reset, and other scenarios where an additional level of assurance is required to validate a request.
- Voice MFA: Employees without smartphones can receive a phone call to their cell phone or landline to verify their identity during authentication to the OneLogin portal.
Here’s where the future comes into play. Passwords remain the top risk for enterprises, as 80% of data breaches are caused by compromised, weak, and reused passwords. With this understanding, it’s important for enterprises to move from text-based passwords toward more context-aware methodologies that leverage artificial intelligence and machine learning to develop risk scores based on user behavior. Our Fall ‘19 release includes features that enable administrators to establish secure policies for MFA, while easing any inconvenience of MFA for employees. These features include:
- SmartFactor Login Flows: Companies are empowered with more choices when it comes to enabling user policy flow selection. From implementing policies that protect against brute force attacks to moving towards a passwordless login, OneLogin gives organizations the ability to implement and enforce with confidence. For example, a company can decide to reduce the number of accounts that are getting locked out due to excessive invalid authentication requests and implement a secure, robust login experience for employees.
- Smart Access: Reduces the inconvenience posed by MFA for employees by establishing policies that deny access to users under questionable or risky logins.
Unify Access Across Directories and Devices, including Complex and Remote Environments
Employees need access to apps and data anytime, anywhere. As more employees work from home, secure and reliable remote access is critical. Providing unified access becomes more complex when businesses rely on a combination of cloud and legacy, on-premise apps. OneLogin Access provides a simple, single sign-on (SSO) experience for access to any app from any device. The unified access features in this release include new functionality that enables secure access to apps, desktops, and servers in any location:
- RDG Server & RDWeb Auth: Access Microsoft Remote Desktop Gateway (RDG) Server and Remote Desktop Web (RD Web) remotely with MFA. Users enjoy a secure, simple SSO experience to access Windows servers. Administrators can set up configurations using the OneLogin admin user interface or APIs and configuration management tools like Terraform.
- Access Enterprise Ready: Designed for EBS, PeopleSoft, JDE, and Jira/Confluence, OneLogin Access secures applications across local, remote data centers, and private cloud environments, making solutions easier than ever to deploy, configure, and update.
- Azure AD Connector: Synchronize users from Azure AD to OneLogin and proxy user authentication requests to Azure AD for credential validation. Office 365 users can leverage OneLogin for SSO, SmartFactor Authentication, Vigilance AI, and more.
As the explosion of apps continues to change the way we do business and manage our lives, it’s more important than ever to equip developers with the tools they need to deliver secure application experiences. In this release, we strengthened our developer tools and capabilities to enable more avenues for automation via OneLogin APIs. These new features and enhancements include:
- OpenID Connect: We’ve enhanced OpenID Connect (OIDC) with additional features that enable greater control over token expiry, support for custom domains, and customizable JWT access tokens that can be used for API Authorization.
- Mobile SDK: A new, pluggable and extendable developer kit that allows customers to embed OneLogin authentication protocols into any enterprise or consumer application.
Early Preview Programs
In addition to our newly announced features, we will also preview additional programs for customers. As part of our Early Preview Program, we will feature additional API capabilities that will enable customers to automate app rollout. For customers with several applications to administer, App API gives customers the ability to automate app rollouts and save stateful configuration. For more information, visit the App API early preview page to register.
Customers can also participate in an early preview of API Authorization, a new feature that generates access tokens that can be used to authorize requests against an API or API Gateway. API Authorization provides enables OneLogin customers to customize the JWT access tokens that are generated after a user authenticates via OpenID Connect (OIDC). For more information, visit the API Authorization early preview page to register.
Want to learn more about the new features included in our Fall ‘19 Release? Stay tuned for our upcoming product webinar on January 7! You can also keep up to date with the latest on all of our releases by signing up for our newsletter.