Yubico, Centrify Align On Authentication Versatility

April 19, 2016 2 minute read

Versatility is a theme that has emerged with the YubiKey, whether it’s support for Personal Identity Verification (PIV)-based capabilities, one-time passwords (OTP), or mobile authentication.

These authentication options are attractive to users and businesses because they’re contained in a single YubiKey that solves multiple use cases, simplifies user training, and improves security.

 Our partner Centrify offers the same sort of flexibility and is the first identity and access management (IAM) platform to support smart card PIV, OTPs, and mobile authentication using a YubiKey.

Centrify’s Identity Service offers administrators and users single sign-on (SSO), adaptive authentication, and strong multi-factor authentication options – the newest being support for YubiKey. Centrify adds management features on their end, including enrollment, per-app policies and enforcement, and context-based multi-factor authentication across users, apps and servers. The Identity Service bridges old, new, and cloud systems, along with multiple operating systems.

YubiKey’s support of PIV, a smart card that satisfies identification standards required for federal employees, means the card’s credentials can be loaded on the key, which streamlines them into a new smart card form factor and eliminates the need for cumbersome card readers.

YubiKey PIV-capabilities used for Active Directory-based logins to Mac OS X and Linux platforms also adhere to National Institute of Standards and Technology (NIST) requirements. And the smart card features support login to Centrify’s cloud service for SSO, secure remote access, or administration features.

With YubiKey’s support for Near Field Communication (NFC), a simple tap of the key against an NFC-enabled mobile device authenticates a user to apps and servers. OATH-HOTP support in the Centrify Identity Service lets organizations use a YubiKey configured with an OTP when a smart card-enabled environment is not available.

“Because it is so hard to secure the things that are outside your control like apps, users, and devices, let’s call for multi-factor authentication wherever you need it,” said Ben Rice, Centrify’s Vice President of Worldwide Business Development.

Next month, Yubico and Centrify will host a webinar that goes deeper into the capabilities and possibilities offered by the combination of their technologies. Registration is now open.

Share this article:

Recommended content

Seven tips if you’re still scratching your head after reading Biden’s cybersecurity executive order

Yubico works with a lot of federal agencies and contractors, as well as with customers in regulated industries, so we understand the challenges new compliance regulations can bring. The executive order that was released May 12 can be seen as the federal government fully embracing the move toward multi-factor authentication (MFA) for use cases where ...

Yubico brings the YubiKey to the .NET ecosystem with its new desktop SDK

In continuation with our mission to bring strong authentication to the world, Yubico is excited to announce that integrating the YubiKey into your .NET application or workflow will now be easier than ever before. This is enabled with the introduction of the new YubiKey SDK for Desktop. With this Desktop SDK, you can now add ...

Entrust to add support for YubiKeys with PIV alternative and PIV derived credentials, advancing secure mobile and desktop authentication

Today marks an important day for expanding Yubico’s reach to support the growing requirement for Government agencies to issue government credentials beyond Personal Identity Verification (PIV) cards. We are celebrating that our partner Entrust will soon launch support for derived PIV credentials for YubiKeys. Customers will be able to take advantage of YubiKeys with derived ...

Your Bridge to Passwordless: Key Considerations When Building a Secure Passwordless Strategy

Learn about the key considerations to take into account when determining your path to passwordless, so that you can enhance organizational security while delivering users a fast and easy user experience.