SmartFactor Authentication™
Detect and respond to high risk logins without sacrificing usability
Standard multi-factor authentication (MFA) uses static rules requiring users to authenticate every time they log into an application. However, this can impact the user experience and does not always effectively protect an organization from more advanced threats like spear-phishing and brute force attacks.
As part of our Trusted Experience Platform™, SmartFactor Authentication leverages our Vigilance AI™ risk score to dynamically adjust authentication requirements in real-time based on the level of risk for each login, balancing security with usability.
Dive in to learn more
How SmartFactor Authentication works
OneLogin’s SmartFactor Authentication uses machine learning to analyze a broad range of inputs, such as location, device, and user behavior, to calculate a risk score and determine the most appropriate security action to take for each login attempt. Depending on the detected level of risk, SmartFactor Authentication adjusts the number of authentication factors needed to log in.
Configurable Authentication Flows
OneLogin lets you define authentication flows based on user policy to defend against brute force attacks, reduce account lockout, and enable frictionless logins for low-risk users.
- Enable passwordless authentication for users on a trusted device
- Check the user’s ID and device first and then, based on the risk score, prompt for an additional factor only if needed
- Use OneLogin Protect to remove friction by letting users simply respond to an MFA push notification on their mobile device.
Policy-Driven Access Denial
Compromised Credential Check
SMS Authentication
Voice MFA
Plays nicely with others
