You decided to switch your systems to two-factor authentication, now what? Onboarding of your users should be simple and intuitive, not the topic of several meetings and HR discussions. With the SecSign ID enrollment procedures you’ll have your users set up in no time and with minimal administrative effort.
For the two-factor authentication login the user enters an ID. This ID is not confidential, it can be a simple name or based off your requirements (for example Email handle, existing user names). This ID identifies the user for the authentication, basically like a user name.
During the enrollment of the user he defines a SecSign ID to be used with his account, or the administrator predefines one for him.
Alternatively, a two-step authentication can be activated, where the user has to provide both his user name and password as well as the two-factor authentication to gain access to his account. Two-step authentication can be activated by the administrator.
The ID is connected to the existing users in the user management system, for example Active Directory. More information about the integration with existing user management systems is available here.
With the SecSign ID Rollout procedures you can conveniently sign up all users – both old and new and with varying security requirements. Use the SecSign ID 2FA Server as simple 2FA extension for your existing Identity Management system, or upgrade your user management with the ID Server as a custom and extensive Identity Management (IDM) for your user data and user management. Simplify and secure your user management with the SecSign ID IDM without the need for additional user directories, for example AD.
Keep your existing User Directory and use the SecSign ID server just for the 2FA
You already have your users set up in your user directory, for example Active Directory, Atlassian Crowd or similar.
Your user directory (for example Active Directory) is connected to the on-premise SecSign ID. The individual user accounts will be connected to an unique 2FA ID (SecSign ID). You have the option to connect your users directly in the user directories (for example via schema extension in the Active Directory), or directly in the SecSign ID server (without any changes to your user directory).
Users can be connected to their unique 2FA ID (SecSign ID) either automatically or manually via the admin, depending on your requirements.To automatically connect the user to their unique ID, they can log in with their regular user credentials (from the user directory) on either the service website ( for example Atlassian), a custom website or the custom SecSign ID app.
The user logs in with his user credentials via the on-boarding page (either custom or via the service, for example Atlassian). The user is presented with a QR-code or on-boarding code to activate the 2FA via the SecSign ID app. Rollout options (for example QR-Code, pre-defined user names) for the user can be customized to match your needs.
Import your user data to the ID server
This gives you the option to use the SecSign ID server both on-premise or in the cloud as an Identity Management Server for all your users. Rollout for your users is as convenient as you want it to be.
Signing up, registering and managing new users or a new management setup is easy with the SecSign ID. You decide how secure the user registration needs to be.
Simple activation
You don’t need a highly secure identification of the users to sign up, they can register and activate their 2FA without additional verification of their identity. You can send out activation links via for example Email.
High Security activation
You want additional security in identifying your users. Security features for this option can be defined individually to fit your requirements, for example identification with PostID, VideoID, or a simple letter to their address to verify their identity.
Our Enrollment and Onboarding options are intuitive and fit any company setup. Wether you want to link your user management system, for example Active Directory, or not, have the administrator do all the work or rely on your users to sign up. We offer ready-to-use solutions for all systems, and custom setups for everyone else.
The administrator pre-defines the pattern of the IDs he wants his users to use, for example Email handles or existing user names. He has the user management system (for example Active Directory*) linked to the SecSign ID on-premise server. Connecting the IDs with the user accounts can be initiated with just one click. The users automatically get a QR delivered (either via mail, Email, or portal link).
The user activates his ID on his phone by scanning the QR Code with his SecSign ID app or by following the activation link (for non-smartphone users). The user can use the two-factor authentication right away for all access points the administrator defined for him.
* There is no need to transfer any user data to our server. You are in control, always.
The administrator pre-defines an ID or ID pattern (for example the Email handle of the company’s Email addresses) and links the user management system * (for example Active Directory). The user downloads the custom company app, logs in with his regular user credentials he normally uses (user name and password) and is, after successful authentication, assigned the ID. He can then use the ID with the custom company app to authenticate for company logins.
Our developers provide you with a ready-to-use custom ID app with all features. No need to hire out!
* There is no need to transfer any user data to our server. You are in control, always.
The user downloads the custom company app and authenticates with his regular user credentials he normally uses (user name and password). He can then define an ID of his choice, which is automatically connected to his user profile in the companies user management system *. This ID can then be used for all company two-factor authentication logins which were previously protected with just the user name and password.
Our developers provide you with a ready-to-use custom ID app with all features. No need to hire out!
* There is no need to transfer any user data to our server. You are in control, always.
The user donwloads the default SecSign ID app and chooses a SecSign ID. This SecSign ID is forwarded to the administrator, who links the user account to this ID manually in the existing user management system (for example Active Directory). Once the ID is linked, the user can authenticate to all company SecSign ID logins that required a user name and password before.
Some setups require a special enrollment procedure, for example Atlassian Crowd setups, some SSO setups or setups with both external and internal users.
SecSign offers a convenient, secure and straightforward way to enroll users for any of those scenarios. Simply message us with your requirements and we’ll provide you with the perfect enrollment scenario for your setup
Every setup is different, and so are your requirements. The following enrollment and activation procedures can give you a visual overview of what is possible with the SecSign ID, but the rollout is not limited by these examples. Have a look at the custom ID app for more options, the Crowd tutorial for Atlassian Crowd setups, or contact us for and individualized procedure.
Choose between our SecSign ID Cloud or operate your own on-premise Two-Factor Authentication server.
Operate your own YourBrand ID app - Two-Factor Authentication customized to your needs.
Integrate SecSign ID Two-Factor Authentication in existing apps with our ready-to-use SDK.
Use the Two-Factor Authentication Server to secure your company Active Directory/LDAP. Your own Identity and Access Management System, for example for mandatory updates and additional security features.
Integration in any login environment: web, local, VPN, remote desktop, mobile logins and many more.
No need for complex integration: we have plugins for almost all environments.
Total control at any time over all duplicated ID’s, information about the replication via push notification and special alert/message on all devices.
On-premise installations of SecSign ID offer the flexibility to connect with your preferred servers, services, and devices. And you can customize the SecSign ID with your own organization’s branding.
Want to learn more about SecSign’s innovative and highly secure
solutions for protecting your user accounts and sensitive data?
Use our contact form to submit your information, and a SecSign sales representative will contact you within one business day.
If you need assistance with an existing SecSign account or product
installation, please see the FAQs for more information on the most common questions. You don’t find the solution to your problem? Don’t hesitate to contact the
Product Support
I am Interested in