SecSign ID Admin Panel for On-Premise User Management

2019-06-11 5 minutes to read
Tutorial Index

Manage your users and authentication options conveniently

For SecSign ID on-premise setups managing users and authentication options is easy and convenient. The administrator can manage individual users for all services, authentication and app settings. It offers a fully customizable management experience that provides the administrator with a comprehensive toolbox for user management, app and authentication options and endpoint monitoring. The administrative panel and its features is accessible both via the SecSign ID server dashboard or integrated in existing management tools and processes via for example REST API. For more information about the SecSign ID on-premise setup have a look at our overview page.

ON-PREMISE

The design and layout as well as selection of features are fully customizable to fit your company brand and requirements. Contact us for more information

Features

Features


Get an overview of settings, options and features of the administrative backend. The backend is customizable to fit your requirements, regulations and company design. You can individually define endpoint monitoring options, app and authentication options and requirements and manage your users and enrollment of new users both individually and collectively. The administrative panel user management can both be used synched to your existing user management system (for example Active Directory), or used as a single standing IdM (Identity Management) solution for all users and services.
Contact us for more information on customizations of the backend and ID app.

Secure Login

Secure Login

Login to the Admin Panel is secured with secure two-factor authentication. Access can be managed individually and for example limited to an internal network.

2FA App Access

2FA App Access


Access to the 2FA app (SecSign ID app) is secured with a PIN/password or fingerprint. Only if the user provides one of these, he can start the authentication procedure. With the on-premise setup and the admin panel the administrator can specify rules for app protection, for example password requirements.
The administrator can define the preferred or required mode of authentication for accessing the app, for example mandatory biometric authentication, minimal password length, disable PIN and more. He can also make the use of an app protection method (password, PIN or similar) mandatory for all users to improve security.

User overview

User overview


The administrator panel offers comprehensive options for user management as well as endpoint management. It can be linked to an existing user management system (for example Active Directory, LDAP), or used as a single-standing Identity Management Service (IdM) for internal and external users and for all services and access points combined. Users can be managed, activated and monitored via the intuitive admin panel and based on custom access rights of the administrators (for example user management only accessible for specific administrators or password reset only possible via the four-eye principle.
Users can be enrolled for 2FA both individually and via groups and services or access rights revoked both temporarily and indefinitely. User groups can also be used to manage access rights, self-management and user management access.

Individual User Details

Individual User Details

Information on individual users can be managed via the administrative panel and analyzed both individually or collectively. The administrator has access to both comprehensive user management options as well as endpoint monitoring information. He can assist the user in case the restore function was not activated previously to loosing access to a device (or make the activation of the restore function mandatory for all users in order to activate 2FA). Logging of all information can be customized based on your requirements and regulations as well as common data security regulations.
The administrator can access status of 2FA activation for each individual user, SSPR options, status, devices, restore options and statistics. He may individually or collectively define rules for 2FA activation and use, for example the mandatory activation of the restore function, mandatory system updates for old or compromised OS, deactivate the ID on specific devices altogether and more. Additionally, authentication requirements may be defined both for individual users or user groups, for example 2FA, 2SA (password followed by a 2FA) as well as password policies

Create new user

Create new user

The administrator can use the SecSign ID server as a complete IdM (Identity Management) solution, including the creation of new users for all systems. When creating a new user the administrator can decide on the mode of 2FA onboarding (for example QR-Code procedure) as well as security and authentication level for each user (from email activation to PostIdent or personal activation).

Customizations

Fully customizable for both features and layout

Both the individual features and the layout of the administrative backend are fully customizable to fit your requirements.

  • Customize the layout: Color scheme and Logo can be matched to your company profile
  • Customize the login: Define the login procedure for the administrators, including simple 2FA, extended two-step authentication, automatic login with Active Directory user credentials or other options.
  • Customize the user processes: Define custom processes or customize existing processes, including the restore procedure for lost devices, Email OTP procedure and mail text, login procedures and more.
  • Customize access roles: Define administrative roles and customize access for each role. Administrators responsible for the enrollment can be authorized to only have access to enrollment information and not access other, restricted, information.
Additional and optional features

Additional and optional features

In addition to the standard features of the administrative panel and the SecSign ID server both as a supportive or single standing IdM (Identity Management), custom and optional features are available.

  • Layout and Design customizations to fit your company brand
  • Electronic Signature services
  • SAML IDP: Create and link new SAML Service Provider
  • SSO: Management and setup for SSO services, for example SAML SSO
  • REST API link
  • Hardware Token and Management

Your own ID-Server

On premise installations of SecSign ID offer the flexibility to connect with your preferred servers, services, and devices. And you can customize the SecSign ID with your own organization’s branding.

Learn More
On Premise 2FA ID

Latest Blog Posts, Updates & Features

SecSign ID Server passed FIDO Certification

We are happy to announce that the SecSign ID server has passed the official FIDO certification program of the FIDO Alliance. This will allow you to use the complete FIDO2/WebAuthn standard for passwordless 2FA sign-ins in your exi ...

Mehr Lesen

Two-Factor Authentication with Fido2 / WebAuth

The FIDO2 Project is a set of standards developed by the FIDO Alliance and the World Wide Web Consortium (W3C) to create a strong authentication protocol for the web. It consist mainly of the WebAuth standard for the browser part ...

Mehr Lesen

Protecting the Home Office VPN with 2FA

In the recent weeks, home office work has increased potentially. And while employees are practicing social distancing from their home computer, attackers are working hard to exploit security issues in this situation that is unfami ...

Mehr Lesen
SecSign 2FA