Zoho’s ManageEngine adds biometrics, multi-factor authentication for VPN support
Zoho Corporation subsidiary ManageEngine has upgraded ADSelfService Plus with multi-factor authentication (MFA) including face and fingerprint biometrics for VPN support to prevent unauthorized remote access to enterprise internal networks, the company announced.
ADSelfService Plus is an integrated Active Directory (AD) self-service password management and single sign-on (SSO) solution that now provides an additional authentication layer to stop password cracking and compromised credentials from accessing the network.
“VPN gateways are directly accessible through the internet and are prone to brute force and other types of attacks,” Parthiban Paramasivam, director of product management, ADSelfService Plus, said in a prepared statement. “Relying on credentials alone to protect VPN access to vital resources could result in immeasurable losses. Implementing MFA for VPNs ensures that employees have a second layer of defense, even if their credentials are compromised. ADSelfService Plus presents an MFA solution that is both secure and easy to use for employees.”
Biometric authentication ranks among top user preference, according to Ponemon Institute’s 2020 State of Password and Authentication Security Behaviors Report.
ADSelfService Plus supports fingerprints, face ID, push notifications and TOTPs via the ADSelfService Plus mobile app, YubiKey OTP, Google Authenticator and Microsoft Authenticator. The service also supports strong password policy rules and integrates with Have I Been Pwned? to prevent users from setting their account passwords to previously compromised passwords.
A free version is available for up to 50 users. Pricing for the professional edition starts at $1,195 annually for 500 users.