While integrating FIDO U2F key as a new authentication method to Rohos Logon Key, we have reviewed it’s features. In this article we outline the origin and history of U2F, how it works on low level, the list of capabilities and possible applications that beside authentication includes also document signature, crypto-currency, blockchain and change management.
Rohos Logon Key v.3.6 now allows to use T-OTP OATH codes produced by Google Authenticator for example, for Windows AD network multi-factor authentication: user account password + OTP code. OTP codes verification performed by Domain Controllers. Offline workstations are also supported. Also we are working to add FIDO U2F devices support.
Rohos Logon Key v3.5 announce now support of RFIDeas pcProx reader and KCY-125 RFID reader. This allows to implement multi-factor authentication by using a variety of RFID cards, tags, bracelets and employee ID badges of Emarine, Indala, HIDProx and other standards in Active Directory and standalone Windows workstations as well. Rohos Logon Key replaces weak password based login with a physical key and PIN code or physical key and Windows password. This improves organization security controls and brings regulatory compliance such as HIPAA, HITECH, PCI DSS, FFIEC and others.
TeamViewer, one of the most popular remote access programs, does not offer a built-in system for two-factor authentication. When TeamViewer is launched, it generates a short password and receives from the server a short number for full access to the current computer. How dangerous is this? Is there a possibility that someone could connect to a corporate computer again when no one is present?
Rohos Logon Key offers a way to protect TeamViewer sessions using an additional one-time password, thereby implementing two-factor authentication with a TeamViewer password as well as a one-time Google Authenticator password.
Advantages of protecting your system with two-factor authentication:
Rohos Management Tools provides a secure way to setup multiple users or authentication devices. Now it is easy to setup a list users with Google Authenticator 2FA. It is also possible to automatically send an email message to each user that includes Google Authentication setup instructions. The most secure way is to use corporate email.
New ways to register multiple user or 2FA tokens: by using CSV file or PowerShell script.
Rohos Logon Key allows to protect Windows Terminal Server by using 2-factor authentication with One-Time-Passwords. Using Google authenticator as OTP generator requires to deliver and store OTP secret key on the mobile device of end-user in mobile email, SMS or Google Authenticator application.
In order to improve security you can setup your Windows Server to generate and deliver One-Time-Password to the end-user by using SMS messages or Email which is also reliable and free. With this feature there is no need to send OTP secret key and setup Google Authenticator on mobile device of end user.
Read more
Updated: 15 January 2019
Dear users and customers, we are glad to announce first release for a major update of Rohos Logon Key for Windows. Now Rohos Logon Key automatically detects Active Directory environment and uses Active Directory storage to keep domain-wide settings and list of authentication keys and devices. We have completely refactored Rohos Remote Config utility and Key manager. Applying multi-factor authentication in Active Directory has never been so easier!
Read more
Meet a new version of Rohos Face logon from 17 January 2017. In this realease:
In future we plan to add a remote storing of users’ photos to provide the network access to homegroup and domain computers.
Rohos Face Logon – secure authentication with face recognition. The process of authentication is made in one step and is based on uniqueness of human face.It allows accessing Windows computer in a easy, fast and secure way by using any Windows compatible camera.
Program is easy to setup, has simple interface, self-training feature and possibility to hide authentication window. Often there are situations when one computer is used by several users e.g. office computer for co-workers, home computer or notebook for family members. Rohos Face Logon can register several users for different users account. Download and setup program.
In the main window press Register face, enter the Windows password, the program starts to register first user. During registration it is desirable to move you head forward and backwards that will create a better reference template for identification.
Today we would like to announce Rohos Logon Key 3.3 for Mac OS X 10.12 Sierra. By default after updating Mac OS X to Sierra it will disable Rohos Logon Key and you need to reinstall it and restart your Mac. After a month of support ticketing with Apple Inc. devs we has been figured out the update issue.