PortalGuard's Latest in Feature Updates - Summer 2019

There is never a shortage of feature and enhancement requests from our customer base. These have been critical to ensuring PortalGuard's relevance in the authentication space so keep them coming! Features that make it into PortalGuard are either directly funded by a customer through our Tailored Authentication program or they are requested by multiple customers. For the latter case, these...

Continue Reading →

Tags: Authentication Security, End user experience, MFA, Multi-Factor Authentication, PortalGuard, Access Control, Access Management, Active Directory, PortalGuard Configuration, PortalGuard for Education, PortalGuard Update, SOL-based directory, two-factor, Two-Factor Authentication, secure login, security risk, login session, mobile authentication, Biometrics, front-end login, voice biometrics, domain policy, fingerprint readers, enable 2fa, security compliance, features, voice recognition, tailored authentication, automatic delivery fallback/failover, web-key, bio-key

Importance of Third-Party Testing and Verification

All companies that create software necessarily do varying degrees of internal testing. There are numerous types of which can include: unit, system or "end-to-end", regression, performance, load or "stress", accessibility and security. Yes, that is a LOT and it's only a sample! Having a dedicated team of specialists for this purpose is ideal, but anyone that works with the same product daily is...

Continue Reading →

Tags: Press Release, software as a service, Software Security Testing, SSO, Static Binary Analysis, static password, usability, User Experience, Veracode, Application Security Testing, Password Management, #phishing, PortalGuard Configuration, PortalGuard for Education, PortalGuard Update, Service Provider, Single Sign-On (SSO), SSPR, Stand your Ground, tech support, updates, PortalGuard Service Provider, veracode verified, "static" analysis, Spoofing, Probabilistic Techniques, Exploitation of Authentication, Manual Penetration Testing, Dynamic Link Libraries, Abuse of Functionality, Exploitation of Trust, Data Structure Attacks

SAML or CAS SSO - Which Industry Standard Protocol Should You Choose?

Industry standard protocols are the reason that Single Sign-On (SSO) is a popular topic throughout the tech industry.  SSO reduces login prompts for end-users while improving both usability and productivity. Without the use of industry-standard protocols, this entire process would be much more difficult to implement and manage.  However, it can often be difficult to decide which protocol to...

Continue Reading →

Tags: #applications, CAS, Centralized Authentication, IdP, Integration, PortalGuard, Security Assertion Markup Language, SSO, PortalGuard Configuration, SAML, #samlapplications, #SAMLSSO, secure authentication, Service Provider, Single Sign-On, Single Sign-On (SSO), stronger security, Single Sign-On Options, increase security, flexibility, sign on to web applications, Standards, Simplicity, Modern SSO Protocols, SSO Support Protocols, web-based SSO, maintain security privacy, industry standard protocols, SSO reduces login prompts for end-users, troubleshoot, server-to-server communication, secure communication, metadata, simple configuration, streamlined integration, simplified integration, applications supporting SAML, improve usability and productivity, Central Authentication Service, IdP Options, Shibboleth, ADFS, IdP supports multiple industry standard protocols, modern industry standard protocols, simplify integrations, HTTP-based SAML protocol, CAS SSO, timing of the request, CAS Authentication, protocol configuration, SSO Process, configuration process, SAML vs CAS, secure integration, secure SSO

by Jay Ouellette 0 Comments
by Christopher Perry 0 Comments

7 Blogs to Revisit for National Cybersecurity Awareness Month

Since 2004, the Department of Homeland Security (DHS) and the National Cyber Security Alliance (NCSA) have officially recognized October as National Cybersecurity Awareness Month (NCSAM).  Pulled directly from the official StaySafeOnline website, NCSAM is “…a broad effort to help all Americans stay safer and more secure online.”  Here at PortalGuard, Security is something that we take very...

Continue Reading →

Tags: Education, PortalGuard, security questions, #securityandusability, static password, strong password, technology, Tokenless Authentication, Turnkey Authentication, usability, User Experience, PortalGuard Configuration, PortalGuard for Education, service, Single-Factor Authentication, Single Sign-On (SSO), #singlesign-on, SSPR, Stand your Ground, stronger authentication, stronger security, #strongpassword, tech support, Two-Factor Authentication, User Authentication, user convenience, #userauthentication, #userexperience, Virtual Private Network, web applications, Password Reset from the Mac Desktop, reducing help desk calls, healthcare, SSO Proxy, password spraying, pwned passwords, Lanyard Login, Chrome Books, Special Education, Para Professionals, Students, Single Sign-On Options, increase security, SAML Single Logout, flexibility, security trends, secure login, Ask Christopher, technical support, geolocation, off network access, PortalGuard Authentication Provider, Google Authenticator, SMS Text Message Gateway, Duo Push Security, RSA SecurID, Duo, higher education budgeting, budget, fiscally sound decisions, classroom, OTP Methods, empower users, stolen passwords, hackers, scams, weak link, budgeting for education, university, college, community college, password policies, password length, passphrase, update your passwords, password patterns, password generator, password habits, secure passwords, challenge questions, IT Department Best Practices, impersonations, layer of security, breaches, IT Department, security risk, logging off, login session, outlook, mobile authentication, PortalGuard Security Policy, National Cybersecurity Month

by Tom Hoey 0 Comments

How Self-service Password Reset Enrollment Works

Self-service password reset is the process that allows users to reset their forgotten password by proving their identity through other means. Challenge answers or OTPs sent to mobile devices are the typical alternative methods of identification.  Enrollment of these methods through PortalGuard is described below.

 

First the user attempts to login...

Continue Reading →

Tags: OTP, PortalGuard Configuration, Self-Service Password Reset