OneLogin is now a One Identity company. You may need to disable your browser’s popup blocker setting to be redirected.
If your browser does not automatically redirect you, please click here
Standard multi-factor authentication (MFA) uses static rules requiring users to authenticate every time they log into an application. However, this can impact the user experience and does not always effectively protect an organization from more advanced threats like spear-phishing and brute force attacks.
As part of our Trusted Experience Platform™, SmartFactor Authentication leverages our Vigilance AI™ risk score to dynamically adjust authentication requirements in real-time based on the level of risk for each login, balancing security with usability.
Read our product datasheet for more information about OneLogin SmartFactor AuthenticationVIEW NOW
OneLogin’s SmartFactor Authentication uses machine learning to analyze a broad range of inputs, such as location, device, and user behavior, to calculate a risk score and determine the most appropriate security action to take for each login attempt. Depending on the detected level of risk, SmartFactor Authentication adjusts the number of authentication factors needed to log in.
Protect against hackers using stolen credentials. When users attempt to create or change passwords, OneLogin checks their new password against a database of compromised credentials that have been stolen in large-scale attacks to prevent the use of stolen passwords.
Sometimes it’s not about limiting access but denying it. OneLogin lets you create user or app policies that deny access under certain circumstances.
One-time passwords are sent over SMS as an additional layer of security for self-service password reset or MFA.
As an alternative to SMS or email, voice MFA allows users to receive a phone call to their mobile phone or landline, verifying their identity to the OneLogin Portal.
Already using a two-factor authentication provider? OneLogin SmartFactor Authentication integrates with a number of third-party authentication providers: