IDENTIKEY Authentication Server

IDENTIKEY Authentication Server is an authentication software suite for organizations of all sizes that want to address their concerns about secure access with a state-of-the-art solution.

Management platform

IDENTIKEY Authentication Server (IAS) is a comprehensive, centralized and flexible authentication platform designed to deliver complete authentication lifecycle management via a single, integrated system. It offers secure and seamless access to corporate resources and applications of all kinds, from SSL VPNs to cloud-based apps, supports VASCO’s entire range of authentication and signature solutions, and simplifies authentication management for administrators and users alike. VASCO IAS is the perfect fit for any organization, including banking and financial services, looking to centralize and simplify the way they manage their authentication schemes for corporate employees, partners and customers.

Comprehensive secure access

VASCO IAS delivers secure, centralized and consistent access to virtually any corporate resource, from SSL VPNs to a cloud-based applications, including:

  • Firewalls and VPNs

  • Web-based Portals/Outlook Web Access

  • Microsoft Office 365

  • Citrix solutions

  • VDI solutions

  • SaaS applications

  • Retail and corporate banking applications

  • Medical and EHR applications, such as Epic Hyperspace

VASCO IAS can be linked to any web-based application via a SOAP API, allowing for easy server modifications (an SDK is available on demand to allow smooth integration of this functionality), or, when paired with IDENTIKEY Federation Server, VASCO IAS delivers seamless SSO (Single Sign On) for Web applications via SAML.

Complete Authentication Support

VASCO IAS delivers extensive support of all VASCO authentication technologies:

  • Multi-Factor Authentication with OTP

  • Challenge/Response

  • Push Notifications

  • e-Signatures

  • CRONTO & Bluetooth technologies

  • DIGIPASS for Mobile

  • DIGIPASS for Web (zero footprint)

  • Hardware DIGIPASS

  • Software DIGIPASS

  • OOB (Out-of-Band) OTP Delivery (SMS, E-mail, etc.)

Centralized Installation and Management

IAS delivers all the tools required for simple and centralized installation and management. An intuitive Installation Wizard will guide you through the setup process from start to finish. The single web-based administration interface (accessible through any browser, from anywhere on the network), allows for simplified remote administration and management. And a Helpdesk Dashboard enables your staff to deliver faster and more insightful support for users. Through a centralized view, administrators can utilize the Helpdesk Dashboard to easily access user information (status, history, etc.) and DIGIPASS details, as well as quickly create reports on demand.

Scalable architecture

VASCO IAS can support anywhere from a handful of users up to hundreds of thousands of users, without impacting the functionality and operability of your mission-critical applications. It can run on multiple platforms, includes provisioning support for large deployments, and delivers redundancy, automatic replication, and server failover. Further, IAS can be easily expanded to additional users without any changes to your existing IT infrastructure - adding more users and/or applications is as simple as adding a license.

Hassle-free rollout

VASCO IAS provides all the tools administrators need to facilitate a smooth rollout, or migration from existing systems, including built-in, automated deployment functionality that reduces support and help desk requirements. IAS runs seamlessly on any existing infrastructure and does not require dedicated servers or appliances. Existing databases do not need to be replaced, as the data storage can be integrated in Active Directory or into a variety of ODBC-compliant databases. 

A range of software modules is available that allow direct integration into the authentication process of 3rd party systems, such as Juniper SBR (remote access), Microsoft ADFS (Office365 and other cloud applications) and EPIC Hyperspace (EPCS in healthcare), Citrix Storefront (Virtual environments), etc.

Self-management website

IAS is shipped with a user-friendly self-management website through which endusers can manage part of their account and DIGIPASS by themselves. This allows them to self-assign and activate hardware and software DIGIPASS, update PIN and static password, self-unlock their account, test the login process, and various other functions in a very easy way.

IAS Platform Editions

Included Authentication ClientsStandard EditionGold EditionEnterprise EditionBanking Edition
RADIUS authentication (+WAP)
Webfilters (OWA, CWI, StoreFront, RDWA, Generic) 
Desktop Windows Logon  
SOAP authentication  
SOAP e-Signature  option
HSM interface  optionoption
SBR, ADFS3.0, EPIC Modules  

IAS Supported Environments

Operating System

  • Windows Server 2008 R2 with SP1 (64-bit)
  • Windows Server 2012 (64-bit), 2012 R2 (64-bit)
  • SBS2011(64-bit)
  • Windows Server 2012 Essentials (64-bit), 2012 R2 Essentials (64-bit)

Operating System
(Linux distributions)

  • SUSE Linux Enterprise server 11SP4 (64-bit)
  • Ubuntu Server 14.04 LTS, 16.04 LTS (64-bit)
  • Redhat Enterprise Linux version 6.x, 7.x (64-bit)
  • CentOS 6.x, 7.x (64-bit)

Virtual environments

  • VMware ESXi Server version 5.5, 6.0
  • Citrix Xenserver 6.2
  • Microsoft Hyper-V (WS2008R2, WS2012, WS2012R2)

Supported web servers

  • Apache Tomcat 8.5.5
  • IBM WebSphere Applications Server 8.5.5
    • Should include Java: JRE8, JSP2, JS2.4

Supported Webbrowsers

  •  Chrome 50, Firefox ESR45, Internet Explorer 10, 11, Microsoft Edge 25

Data Store (DBMS)

  • Oracle 12c (64-bit, Linux, Windows)
  • Microsoft SQL Server 2008 R2SP2, 2012SP1, 2014 (Windows)
  • PostgreSQL 9.5.2 (Linux, Windows)

Data Store (Active Directory)

  • Windows Server 2008 R2SP1 AD
  • Windows Server 2012 AD, 2012 R2 AD

LDAP Back End Authentication

  • Windows Server 2008 R2SP1 AD
  • Windows Server 2012 AD, 2012 R2 AD
  • NetIQ eDirectory 8.8 SP8
  • IBM Security Directory Server 6.3


  • Safenet ProtectServer Gold, Orange, Express
  • Safenet ProtectServer 2
  • Thales nShield Connect, Solo (on selected platforms)

Compliance To Standards


RFC 2865 and RFC 2866




  • DIGIPASS OTP (Challenge / Response, response Only)
  • DIGIPASS Signature (Transaction Data Validation)
  • OATH (event based – time based)

IAS System Requirements


  • 1.4GHz for 64-bit architectures*

*The following conditions may increase the load of the CPU:

  • Large number of authentication, accounting, signature validation,
    provisioning, or reporting requests
  • RADIUS requests proxied to RADIUS server
  • One or more active audit consoles
  • One or more active administrative sessions
  • ODBC auditing enabled


  •  4GB for most operating systems*

*The following conditions may increase memory requirements:

  • User cache enabled with a large number of users to be cached
  • Extensive reporting

Disk Space

  • Minimum disk space of 60 GB*

*The following conditions may increase disk space requirements:

  • Large number of user and device records
  • High number of reports
  • Unarchived audit log files


  • Minimum resolution of 1024x768


Product Brief


Strong Authentication solution for On-Demand Applications and SaaS

Product Brief

IDENTIKEY Packaged solutions overview

VASCO’s Professional Services packaged solutions provide you with all the components necessary to achieve your authentication objectives.

Product Brief


Strong Authentication solution against MITM Attacks for e-Banking

Product Brief

IDENTIKEY Server for Enterprise Security

IDENTIKEY Authentication Server Enterprise Edition
Product Brief

Leaflet Virtual DIGIPASS and IDENTIKEY

IDENTIKEY Server is the next-generation centralized authentication server that supports DIGIPASS® strong authentication technology.

Case Study


The local government in the municipality of the Danish capital Copenhagen cares a lot about the security of its city’s and citizens’ confidential information. For years, they have been investing in strong authentication to protect the login procedure to the internal network and Outlook Webmail. Static passwords are banned and replaced by DIGIPASS one-time passwords sent as text message (SMS) to the employees’ mobile phones.

Case Study

Croatian Telecom

Croatian Telecom offers a combination of services for both fixed and mobile telephony, data transmission, Internet and international communications. The company decided to implement Virtual DIGIPASS in combination with IDENTIKEY Authentication Server to support its cloud computing strategy. The implementation of VASCO’s solution made it possible to secure the virtual desktops that the Croatian Telecom offers to telecom customers via a public cloud.

Case Study

Deutsche Milchkontor

DMK, Deutsches Milchkontor, Germany’s largest dairy company, already relied on strong two-factor authentication for years to secure remote access to its network and critical data. As a part of a data center consolidation and the replacement of remote access hardware, the company decided to migrate from its previous deployed solution to VASCO’s DIGIPASS technology and at the same time upgraded its server to IDENTIKEY.

Case Study


Enline, an independent technology solutions provider provides advice to both the private and public sector on matters relating to information security and infrastructure solutions. The company was looking for a solution that could be integrated into its applications Computer Associates Site Minder using a SOAP interface. Enline deployed VASCO’s IDENTIKEY Authentication Server and consequently participated in a training program, becoming an accredited IDENTIKEY partner in the UK offering consultancy to its customers.

Case Study


Insites, an international market research company implemented DIGIPASS GO 3, DIGIPASS GO 6 and DIGIPASS for Mobile to guarantee the confidentiality of its collected data. VASCO’s solution allows Insites’ employees to securely and remotely access all network data through a VPN portal.


IDENTIKEY Authentication Server 3.11

IDENTIKEY Authentication Server is an authentication software suite for organizations of all sizes that want to address their concerns about secure access to internet applications with a state-of-the-art solution for strong user authentication.

IDENTIKEY Overview Brochure

The IDENTIKEY product family is continuously expanded as new needs arise in different markets. Technology changes, markets mature and users look for newer, enhanced experiences. IDENTIKEY grows and expands to address these changes. Four major server components exist side-by-side and offer a solution for any security installation: IDENTIKEY Authentication Server, IDENTIKEY Federation Server, IDENTIKEY Appliance and IDENTIKEY Virtual Appliance.

Related Products

This website uses cookies to improve user experience, functionality and performance. If you continue browsing the site, you consent to the use of cookies on this website. Note that you can change your browser/cookie settings at any time. To learn more about the use of cookies and how to adjust your settings, please read our cookie policy.