Two-factor authentication by OTP for TSPlus remote desktop access

We have tried out Terminal Services Plus (TSPlus) solution for Remote Desktop access for Windows 7/8/10 with Rohos Logon Key installed. Both TSPlus web based access and MS Remote Desktop Connection application uses target Windows authentication system. This is the point where Rohos Logon Key applies 2-factor authentication control. The following screenshot demonstrates 2FA requirement upon successful password based remote access with  TSPlus web :

Learn more about Rohos Logon Key benefits with TSPlus remote desktop solution.

Read the rest of this entry »

macOS High Sierra support in Rohos Logon Key

We have updated Rohos Logon Key for Mac to support macOS 10.13 High Sierra. Also we would like to announce soon support for U2F security keys for Mac login.

What’s new:

  • Added support for macOS 10.13 High Sierra
  • Fixed Rohos Logon Key.app sub folders permissions conflict.

Read the rest of this entry »

FIDO U2F security keys’ review: authentication, digital signature or blockchain?

Research on Security Keys

While integrating FIDO U2F key as a new authentication method to Rohos Logon Key, we have reviewed it’s features. In this article we outline the origin and history of U2F, how it works on low level, the list of capabilities and possible applications that beside authentication includes also document signature, crypto-currency, blockchain and change management.

Read the rest of this entry »

Multi-factor authentication with RFID cards HidProx, Indalla, HiTag and Emarine in Rohos Logon Key 3.5

Rohos Logon Key v3.5 announce now support of RFIDeas pcProx reader and KCY-125 RFID reader. This allows to implement multi-factor authentication by using a variety of RFID cards, tags, bracelets and employee ID badges of Emarine, Indala, HIDProx and other standards in Active Directory and standalone Windows workstations as well. Rohos Logon Key replaces weak password based login with a physical key and PIN code or physical key and Windows password. This improves organization security controls and brings regulatory compliance such as HIPAA, HITECH, PCI DSS, FFIEC and others.

Read the rest of this entry »

Two-factor authentication in TeamViewer through Google Authenticator

tv_GA_r1TeamViewer, one of the most popular remote access programs, does not offer a built-in system for two-factor authentication. When TeamViewer is launched, it generates a short password and receives from the server a short number for full access to the current computer. How dangerous is this? Is there a possibility that someone could connect to a corporate computer again when no one is present?

Rohos Logon Key offers a way to protect TeamViewer sessions using an additional one-time password, thereby implementing two-factor authentication with a TeamViewer password as well as a one-time Google Authenticator password.

Advantages of protecting your system with two-factor authentication:

  • Uses a one-time password that can only be used once;
  • An unused one-time password will expire and become invalid after 5 minutes;
  • No need to provide the remote party your Windows user account password;
  • When a new TeamViewer session is started, Rohos Logon Key automatically locks the desktop to ask for two-factor authentication (experimental feature of the beta version);
  • Two-factor authentication can be used only for TeamViewer sessions (experimental)
    Read the rest of this entry »

Registering multiple 2FA users with Google Authenticator configuration delivered by Email

Rohos Management Tools provides a secure way to setup multiple users or authentication devices. Now it is easy to setup a list users with Google Authenticator 2FA. It is also possible to automatically send an email message to each user that includes Google Authentication setup instructions. The most secure way is to use corporate email.

New ways to register multiple user or 2FA tokens: by using CSV file or PowerShell script.

 

Read the rest of this entry »

How to setup 2-factor authentication with One-Time-Passwords delivered by Email

Rohos Logon Key allows to protect Windows Terminal Server by using 2-factor authentication with One-Time-Passwords. Using Google authenticator as OTP generator requires to deliver and store OTP secret key on the mobile device of end-user in mobile email, SMS or Google Authenticator application.

In order to improve security you can setup your Windows Server to generate and deliver One-Time-Password to the end-user by using SMS messages or Email which is also reliable and free. With this feature there is no need to send OTP secret key and setup Google Authenticator on mobile device of end user.
Read the rest of this entry »

Rohos Logon Key v3.4 with Active Directory support

Updated: 15 January 2019

Dear users and customers, we are glad to announce first release for a major update of Rohos Logon Key for Windows. Now Rohos Logon Key automatically detects Active Directory environment and uses Active Directory storage to keep domain-wide settings and list of authentication keys and devices. We have completely refactored Rohos Remote Config utility and Key manager. Applying multi-factor authentication in Active Directory has never been so easier!
Read the rest of this entry »

Rohos Face Logon 3.3

Meet a new version of Rohos Face logon from 17 January 2017. In this realease:

  • was added a support for Windows Surface 10 tablets;
  • were fixed some compatibility errors;
  • added support for Windows Surface PRO 2 devices;
  • now you can disable the logging of faces(Options -> Logged in -> off);
  • now it is possible to register another user face from current user profile. A new user can then log in without his default password;
  • the price was significally reduced (only 9Euro).

In future we plan to add a remote storing of users’ photos to provide the network access  to homegroup and domain  computers.

For more info >>>

Rohos Logon Key for Mac OS Sierra

macossierra-rohos-logon-key

Today we would like to announce Rohos Logon Key 3.3 for Mac OS X 10.12 Sierra.  By default after updating Mac OS X to Sierra it will disable Rohos Logon Key and you need to reinstall it and restart your Mac. After a month of support ticketing with Apple Inc. devs we has been figured out the update issue.
Read the rest of this entry »