Users do not want complicated login procedures when they visit an online portal. Onegini offers a strong authentication solution whereby users receive a push notification whenever a second factor is required. The user only has to click on “Agree” and is then immediately logged in. Users do not have to install anything else because our Push Authentication is integrated within your own mobile app, in your own brand style. Users without a smartphone can use one-time codes via SMS/Text.
Unique to Onegini Mobile Authentication is that your own mobile app is also used as second factor authentication for the web environment. This is irrespective of the login method used by the customer, whether username / password or DigiD. Not only do you offer a customer-friendly solution but you also promote the use of your app.
Onegini can be used in combination with various login methods so that your users have the best user experience. Example; you can let users log in with a username and password but as soon as confidential data needs to be exposed, a push authentication is executed.
Unlocking data which lies within Risk class II or higher, requires strong authentication usually 2-factor authentication. Two of the three elements, what you know, what you have, who you are, and supplemented in certain cases by where you are, must be used. For example, as well as a username and password an extra authentication is required such as a code via SMS/Text, a TAN list, a device characteristic, or a software token or Push Authentication.
To simplify the integration of Onegini into your own application Onegini offers a software development kit (SDK) for iOS and Android. The SDK ensures the security of the integration and means that your app developers do not need to know the complex details of 2-factor authentication and PKI.
|Standards||0Auth 2.0,SAML 2.0|
|Regulatory frameworks||Conforms to the legal guidelines for risk class I and II:UM09
Complaint with Laws and regulations for complete audit-trail
Connecting and disconnecting of devices
|API||API for integration within existing authentication modules
Self-service API for end users,for example:setting a preference for push or SMS/Text
|SDK(Software Development Kit)||iOS and Android|
|Identity Providers||Support for DigiD, eRecognition, Social and others|
|Support||Support for, among others, Microsoft ADFS, IBM, CA, Novell and generic
Onegini authentication server