OneSpan Authentication Server

OneSpan Authentication Server (formerly IDENTIKEY Authentication Server) is an authentication software suite for organizations of all sizes that want to address their concerns about secure access with a state-of-the-art solution.
SC Magazine 5 star rating - 265 x 220

Management platform

OneSpan Authentication Server is a comprehensive, centralized and flexible authentication platform designed to deliver complete authentication lifecycle management via a single, integrated system. It offers secure and seamless access to corporate resources and applications of all kinds, from SSL VPNs to cloud-based apps, supports OneSpan’s entire range of authentication and signature solutions, and simplifies authentication management for administrators and users alike. Authentication Server is the perfect fit for any organization, including banking and financial services, looking to centralize and simplify the way they manage their authentication schemes for corporate employees, partners and customers.

Download manuals for all OneSpan Authentication Server products

Comprehensive secure access

OneSpan Authentication Server delivers secure, centralized and consistent access to virtually any corporate resource, from SSL VPNs to a cloud-based applications, including:

  • Firewalls and VPNs

  • Web-based Portals/Outlook Web Access

  • Microsoft Office 365

  • Citrix solutions

  • VDI solutions

  • SaaS applications

  • Retail and corporate banking applications

  • Medical and EHR applications, such as Epic Hyperspace

OneSpan Authentication Server can be linked to any web-based application via a SOAP API, allowing for easy server modifications (an SDK is available on demand to allow smooth integration of this functionality). Dedicated modules are available for integration into business applications, such as Microsoft OWA, Microsoft RDWA, Citrix Storefront and Pulse SBR. Microsoft Office365 and other webapplications can be protected via the plugin for Microsoft ADFS.”

Complete Authentication Support

OneSpan Authentication Server delivers extensive support of all VASCO authentication technologies:

  • Multi-Factor Authentication with OTP

  • Challenge/Response

  • Push Notifications

  • e-Signatures

  • CRONTO & Bluetooth technologies

  • Mobile Authenticator Studio (formerly Digipass for Mobile)

  • DIGIPASS for Web (zero footprint)

  • Hardware Digipass

  • Software Digipass

  • OOB (Out-of-Band) OTP Delivery (SMS, E-mail, etc.)

Centralized Installation and Management

OneSpan Authentication Server delivers all the tools required for simple and centralized installation and management. An intuitive Installation Wizard will guide you through the setup process from start to finish. The single web-based administration interface (accessible through any browser, from anywhere on the network), allows for simplified remote administration and management. And a Helpdesk Dashboard enables your staff to deliver faster and more insightful support for users. Through a centralized view, administrators can utilize the Helpdesk Dashboard to easily access user information (status, history, etc.) and Digipass details, as well as quickly create reports on demand.

Scalable architecture

OneSpan Authentication Server can support anywhere from a handful of users up to hundreds of thousands of users, without impacting the functionality and operability of your mission-critical applications. It can run on multiple platforms, includes provisioning support for large deployments, and delivers redundancy, automatic replication, and server failover. Further, OneSpan Authentication Server can be easily expanded to additional users without any changes to your existing IT infrastructure - adding more users and/or applications is as simple as adding a license.

Hassle-free rollout

OneSpan Authentication Server provides all the tools administrators need to facilitate a smooth rollout, or migration from existing systems, including built-in, automated deployment functionality that reduces support and help desk requirements. It runs seamlessly on any existing infrastructure and does not require dedicated servers or appliances. Existing databases do not need to be replaced, as the data storage can be integrated in Active Directory or into a variety of ODBC-compliant databases. 

A range of software modules is available that allow direct integration into the authentication process of 3rd party systems, such as Juniper SBR (remote access), Microsoft ADFS (Office365 and other cloud applications) and EPIC Hyperspace (EPCS in healthcare), Citrix Storefront (Virtual environments), etc.

Self-management website

OneSpan Authentication Server is shipped with a user-friendly self-management website through which endusers can manage part of their account and Digipass by themselves. This allows them to self-assign and activate hardware and software Digipass, update PIN and static password, self-unlock their account, test the login process, and various other functions in a very easy way.

OneSpan Authentication Server Platform Editions


Included Authentication ClientsStandard EditionGold EditionEnterprise EditionBanking Edition
RADIUS authentication (+WAP)
Webfilters (OWA, CWI, StoreFront, RDWA, Generic) 
Desktop Windows Logon  
SOAP authentication  
SOAP e-Signature  option
EMV-CAP   
HSM interface  optionoption
SBR, ADFS3.0, EPIC Modules  


OneSpan Authentication Server Supported Environments


Operating System
(Windows Server)

  • Windows Server 2008 R2 with SP1 (64-bit)
  • Windows Server 2012 (64-bit), 2012 R2 (64-bit)
  • Windows Server 2012 Essentials (64-bit), 2012 R2 Essentials (64-bit)
  • Windows Server 2016 (64-bit)

Operating System (Windows Desktop Login)

  • Windows 7
  • Windows 8.1
  • Windows 10 (including Builds 1511, 1607, 1703, 1709)
  • Windows Server 2016 (64-bit)

Operating System
(Linux distributions)

  • SUSE Linux Enterprise server 12 (64-bit)
  • Ubuntu Server 14.04 LTS, 16.04 LTS (64-bit)
  • RedHat Enterprise Linux version 6.x, 7.x (64-bit)
  • CentOS 6.x, 7.x (64-bit)

Virtual environments

  • VMware ESXi Server version 5.5, 6.0, 6.5
  • Citrix XenServer 6.2, 6.5SP1, 7.0
  • Microsoft Hyper-V (WS2008R2, WS2012, WS2012R2)

Supported web servers

  • Apache Tomcat 8.5.31
  • IBM WebSphere Application Server 8.5.5
    • Should include Java: JRE8, JSP2, JS2.4

Supported Webbrowsers

  •  Chrome 5.1, Firefox ESR45, Internet Explorer 10, 11, Microsoft Edge 25

Data Store (DBMS)

  • Oracle 12c (64-bit, Linux, Windows)
  • Microsoft SQL Server 2008 R2SP3, 2012SP2, 2016 (Windows)
  • MariaDB 10.2.16

Data Store (Active Directory)

  • Windows Server 2008 R2SP1 AD
  • Windows Server 2012 AD, 2012 R2 AD
  • Windows Server 2016 AD

LDAP Back End Authentication

  • Windows Server 2008 R2SP1 AD
  • Windows Server 2012 AD, 2012 R2 AD
  • Windows Server 2016 AD
  • NetIQ eDirectory 8.8 SP8
  • IBM Security Directory Server 6.3

HSM

  • SafeNet ProtectServer Gold, Orange, Express
  • SafeNet ProtectServer 2
  • Thales nShield Connect, Solo (on selected platforms)


Compliance To Standards


RADIUS

RFC 2865 and RFC 2866

Wireless

EAP, PEAP

Authentication

  • DIGIPASS OTP (Challenge / Response, response Only)
  • DIGIPASS Signature (Transaction Data Validation)
  • OATH (event based – time based)
  • EMV-CAP


OneSpan Authentication Server System Requirements

Processor

  • 1.4GHz for 64-bit architectures*

*The following conditions may increase the load of the CPU:

  • Large number of authentication, accounting, signature validation,
    provisioning, or reporting requests
  • RADIUS requests proxied to RADIUS server
  • One or more active audit consoles
  • One or more active administrative sessions
  • ODBC auditing enabled

Memory

  •  4GB for most operating systems*

*The following conditions may increase memory requirements:

  • User cache enabled with a large number of users to be cached
  • Extensive reporting

Disk Space

  • Minimum disk space of 60 GB*

*The following conditions may increase disk space requirements:

  • Large number of user and device records
  • High number of reports
  • Unarchived audit log files

Display

  • Minimum resolution of 1024x768

Downloads

Case Study

Qatargas

With remote offices and on- and offshore plants in different locations, Qatargas was looking for a secure remote access solution allowing its employees and contractors worldwide to access its corporate network and business applications. By implementing IDENTIKEY Authentication Server together with DIGIPASS hardware authenticators and DIGIPASS for Mobile into its Citrix metaframe, the company is assured that its business critical applications and information cannot be accessed by unauthorized users.
Download
Case Study

City of Copenhagen

The local government in the municipality of the Danish capital Copenhagen cares a lot about the security of its city’s and citizens’ confidential information. For years, they have been investing in strong authentication to protect the login procedure to the internal network and Outlook Webmail. Static passwords are banned and replaced by DIGIPASS one-time passwords sent as text message (SMS) to the employees’ mobile phones.
Download
Case Study

ROC Amsterdam and Flevoland

Enhance security of the online student information system as static passwords don’t provide adequate protection.
Download
Case Study

Deutsche Milchkontor

DMK, Deutsches Milchkontor, Germany’s largest dairy company, already relied on strong two-factor authentication for years to secure remote access to its network and critical data. As a part of a data center consolidation and the replacement of remote access hardware, the company decided to migrate from its previous deployed solution to VASCO’s DIGIPASS technology and at the same time upgraded its server to IDENTIKEY.
Download
Product Brief

OneSpan Authentication Server 3.16

OneSpan Authentication Server is an authentication software suite for organizations of all sizes that want to address their concerns about secure access to internet applications with a state-of-the-art solution for strong user authentication.
Download
Manual

Push Notification Getting Started Guide

This guide is intended for system administrators, integrators, and managers deploying the VASCO Push Notification solution.
Download
Brochure

IDENTIKEY Overview Brochure

The IDENTIKEY product family is continuously expanded as new needs arise in different markets. Technology changes, markets mature and users look for newer, enhanced experiences. IDENTIKEY grows and expands to address these changes. Four major server components exist side-by-side and offer a solution for any security installation: IDENTIKEY Authentication Server, IDENTIKEY Federation Server, IDENTIKEY Appliance and IDENTIKEY Virtual Appliance.
Download
Product Brief

Leaflet Virtual DIGIPASS and IDENTIKEY

IDENTIKEY Server is the next-generation centralized authentication server that supports DIGIPASS® strong authentication technology.
Download
Product Brief

IDENTIKEY Server for Enterprise Security

IDENTIKEY Authentication Server Enterprise Edition
Download
Product Brief

IDENTIKEY e-Banking

Strong Authentication solution against MITM Attacks for e-Banking
Download
Product Brief

IDENTIKEY Packaged solutions overview

VASCO’s Professional Services packaged solutions provide you with all the components necessary to achieve your authentication objectives.
Download
Product Brief

IDENTIKEY SaaS

Strong Authentication solution for On-Demand Applications and SaaS
Download

This website uses cookies to improve user experience, functionality and performance. If you continue browsing the site, you consent to the use of cookies on this website. Note that you can change your browser/cookie settings at any time. To learn more about the use of cookies and how to adjust your settings, please read our cookie policy.