It's a brave new world. One where employees and contractors work remotely accessing cloud apps outside of the corporate firewall and on a wide variety of devices.
That's why you need a brave new device strategy to complement your identity and access management strategy.
Users log in once and have access to all the apps in their OneLogin Portal as well as SAML-enabled desktop apps. No need to sign in again. Users access apps with passwordless authentication. With Desktop Pro, they can even sign into their laptop with their OneLogin password, eliminating the separate laptop password completely.
OneLogin Desktop dramatically increases security with additional two-factor authentication. Users authenticate when they log into their OS using their device password and the installed OneLogin Desktop certificate, providing an additional layer of MFA that further protects access to applications. Make access fast and secure even for remote workers and road warriors.
ONELOGIN DESKTOP PRO
With today’s distributed workforce, it can be months before a device touches the corporate network. If you’re using Active Directory for authentication, that puts you at risk of stale passwords and permissions.
OneLogin Desktop binds machines to the OneLogin Cloud Directory. If you’re cloud-first, that may be all you need. If you’re using Active Directory, OneLogin synchronizes with it to manage identities and credentials without requiring binding to an AD domain—making it even easier to move off AD completely.
Using the OneLogin Trusted Experience Platform™, restrict access so only devices that have OneLogin Desktop installed can be used to access apps. This ensures that only devices sanctioned by IT gain corporate access. OneLogin issues a unique PKI certificate to each machine.
Laptop stolen or missing? Revoke the certificate to prevent bad actors from logging into the laptop account and accessing corporate resources.
Eliminating passwords through SSO reduces password reset requests which typically account for 20% to 30% of helpdesk load. Users receive automated password expiration notices, enabling self-service password reset.
Fast, secure SSO gets users to the apps they need, quickly. Streamlined authentication saves minutes and even hours a day and makes for more satisfied employees.