IDENTIKEY Federation Server

IDENTIKEY Federation Server

IDENTIKEY Federation Server is extremely well suited for large corporations, governments, non-profit organizations and educational institutions looking to secure and manage access to different web-based applications and portals. With a continuous growing number of web-based applications each requiring its own logon procedure, IDENTIKEY Federation Server reduces overall complexity and provides customers with an unprecedented user experience while offering secure two-factor based user authentication.

Identity and access management platform

IDENTIKEY Federation Server is a server appliance providing you with the most powerful identity & access management platform. It is used to validate user credentials across multiple applications and disparate networks.

The solution validates users and creates an identity ticket enabling web single sign-on for different applications across organizational boundaries. As validated credentials can be reused, once a user’s identity is confirmed, access to authorized services and applications is granted. Users can securely switch between the different applications and collaborate with colleagues, business partners, suppliers, customers and partners using one single identity.

IDENTIKEY Federation Server works as an Identity Provider within the local organization, but can also delegate authentication requests (for unknown users) to other Identity Providers. In a Federated Model, IDENTIKEY Federation Server does not only delegate but also receives authentication requests from other Identity Providers, when local users want to access applications from other organizations within the same federated infrastructure.

Turnkey solution, different authentication methods

IDENTIKEY Federation Server is delivered as a turnkey solution and includes an optimized high throughput and fully protected configuration. It is available as a Virtual Appliance, which allows a quick implementation within your virtualized architecture for a solid and optimal performance.

The server supports different types of authentication methods that can be combined with or tied to a specific application. The validation of one-time passwords is performed by IDENTIKEY server. IDENTIKEY Federation Server and IDENTIKEY Server work seamlessly together with VASCO’s DIGIPASS® range which includes both hardware and software authentication methods.


  • One identity ticket to log-on to multiple applications
  • Time-saving and highly efficient log-on method providing advanced user-experience
  • Multiple authentication methods are supported, including application-specific authentication
  • Web SSO- and Federated authentication are consolidated in one solution
  • Single administrative interface and user repository
  • Effortless deployment (up and running within the hour)
  • No changes to existing infrastructure required (e.g. Active Directory schema)
  • Low integration cost
  • High ROI
  • VASCO® offers its consultancy and professional services to customize its solution for your company specific application


  • Authentication Manager:
    • User Authentication: validation of user/password
    • Identity Provider: assigns a ticket to the user which can be re-used during a limited time
  • Access management to web-based applications


  • Federated Authentication
  • Web SSO
  • Authentication Methods:
  • Scalability & Redundancy:
    • Fully scalable supporting high-availability setups
    • Integrated web-based management environment
    • Support for monitoring via SNMP
  • Support for industry-standard communication protocols ensures smooth integration into existing infrastructures and applications.
    • SAML2.0 for IDENTIKEY Federation Server as Identity Provider (incoming requests)
    • SAML2.0 for IDENTIKEY Federation Server as Client/ Service Provider (outgoing requests)
    • ASelect protocol for IDENTIKEY Federation Server as Identity Provider and Service Provider (incoming/ outgoing requests)
    • ASelect WS protocol for IDENTIKEY Federation Server as Client/ Service Provider (incoming requests)

  • Integrated support for popular business and social media protocols
  • OAuth for OAuth Identity providers, such as, FaceBook, LinkedIn, Twitter.
  • ADFS2.0 for ADFS2.0 applications, such as
  • SAML 2.0 for SAML-enabled applications, such as GoogleApps,
  • Basically any application that supports SAML 2.0 can be supported.


Do you have a question regarding IDENTIKEY Federation Server? Read our FAQ


Integration Guide:



Share | |