top of page
Blog article

Blog article

"YubiOn FIDO Logon" Web Management Console Now Supports "Passkeys"

April 3rd, 2023

Dear Members of the Press,


SoftGiken Co., Ltd. (Representative Director: Norio Fujita, established in 1983) has started providing the "YubiOn Security Authentication Service" cloud service, "YubiOn FIDO Logon" that allows anyone to easily realize a passwordless world from May 2021. This time, we are announcing today that we have supported authentication using "passkeys" in the Web management console of "YubiOn FIDO Logon", which can strengthen PC login with various FIDO authentication security keys.


"Passkeys" is a technical standard for authentication that can be used on multiple devices announced in 2022 by the FIDO Alliance, which promotes the passwordless authentication technology FIDO. And "passkeys" become a hot topic when Microsoft, Apple, and Google announced their adoption. Passkey is a new authentication method developed by the "FIDO Alliance" and is also called "Multi-device FIDO Credential". A passkey allows you to log in without entering a password.

"Passkeys" optimize the access and usability of FIDO authentication.

Organizations can deploy FIDO sign-in with "passkeys" for a variety of use cases. "Passkeys" allows users to access their FIDO sign-in credentials on many devices (even new ones) without having to re-register every device with every account. Alternatively, FIDO security keys or platform device-bound passkeys are options for organizations that do not require synchronization.


SoftGiken provides passkey authentication for the Web management console of "YubiOn FIDO Logon", which implements FIDO2 authentication standardized by the FIDO Alliance passwordless authentication technology. The latest Web management console has realized passkey authentication to enhance the convenience and safety of the management site that incorporates the concepts of Zero Trust and DX. This allows users to easily and securely log in using a passkey without entering a password.

SoftGiken always incorporates the latest security technology and contributes to the development of our customers' businesses.


1.What is YubiOn FIDO Logon?

"YubiOn FIDO Logon" is a cloud solution that enhances PCs' login with two-factor authentication using FIDO. The greatest feature of Web service authentication is that administrators can manage and control it on the cloud by using FIDO authentication technology to strengthen login authentication of PCs.


2.YubiOn FIDO Logon features

1)Can be managed and controlled by the Web management console (this time passkeys authentication is supported):

Administrators can check the status and authentication information of registered machines at any time from the Web management console.

Since authentication logs can be checked on the Web, it is possible to immediately grasp the situation when an incident occurs.

2)Easy implementation of strong FIDO authentication:

Upgrade PC logon to FIDO authentication with software installation and simple initial setup.

FIDO's strong security strength can be introduced to PCs.

3)Compatible with various FIDO authenticators

Since it supports various authenticators based on the "FIDO2" specification, you can freely select the authentication method.

You can also use combinations that do not require a password, such as "PIN" & "authenticator", "fingerprint" & "authenticator".


3. Use scene

It can be used in various scenes where security is a concern:

1)In your environment with Active Directory (AD), if you want to introduce two-factor authentication to your PC but do not want to change the AD settings, or if you have restrictions due to the environment such as Windows Hello not being able to use the authenticator you want to use.

"YubiOn FIDO Logon" allows free security design without being bound by AD settings.

2)Want to use two-factor authentication only for a specific account:

You can make detailed security settings for each account, such as two-factor authentication only for Windows accounts with administrator privileges.

3)Want to reduce inquiries about forgetting passwords:

By using the password memory function at the time of initial setting, subsequent Windows password input becomes unnecessary, and inquiries about forgotten passwords can be reduced.


4. Product spec

1)System configuration diagram


2)Environment:

CPU: 32-bit or 64-bit processor at 1GHz or higher

Memory: 2GB or more

Storage: 100MB or more free space

Required middleware: .NET Framework 4.7.2 or later

3)Supported OS:

Client OS: Windows10, Windows11

Server OS: Windows Server 2012 R2, Windows Server 2016,

Windows Server 2019, Windows Server 2022

※ Support for detailed versions of Windows 10, and 11 conforms to Microsoft's support lifecycle.

4)Main functions:

(1)Two-factor authentication:

Make PC login two-factor authentication with a password and FIDO authenticator.

You can use combinations that do not require a password, such as "PIN" & "authenticator", "fingerprint" & "authenticator".

(2)FIDO logon force function:

Forces log on using a FIDO authenticator when logging on to Windows.

(3)Screen lock function:

Lock the screen when the FIDO authenticator is unplugged.

(4)Offline logon function:

・Cache logon:

Retains the cache of the previous authentication and performs authentication when offline.

・Expiraton date setting:

Sets the number of days that cache information is valid.

(5)Remote lockout function:

Makes it impossible to log on to the machine (lockout) remotely using the Web management console.

(6)Lockout after authentication failure function:

・Lockout after authentication failure:

Lock out the machine when the logon fails a certain number of times.

・Auto cancel setting:

Automatically release the lockout after a certain period after an automatic lockout.

(7)Group policy function:

Reflects various settings of YubiOn FIDO Logon for each grouped machine.

(8)Log management function:

Collect machine logs and view them on the Web management console.

(9)Acquisition of location information:

Collects the location information of the machine and displays it in the log.

(10)Version update:

Client software version upgrade function.

(11)Uninstall restriction function:

Restricts general users from uninstalling software.


5. About fees

・From 6,000 yen / 1 account per year

※ Please purchase the FIDO authenticator separately or contact SoftGiken for details.


6. About the service page

・Please refer to the following page:

 

Click here for the press release:



Comments


bottom of page