+1-202-802-9399 U.S. Headquarters
Free Trial

Secret Server Feature: Two-factor authentication

Use two-factor with Secret Server for robust authentication

Two-factor is an authentication method based on something you know (a password) and something you have (a one-time token).

What’s the challenge?

When an administrator’s password is compromised, you need a way to ensure that access to your Secret Server password software is protected.

Why it’s important?

Secret Server holds some of your organization’s most sensitive data and access to it must be secure. Two-factor authentication is a security best practice that is easy to enable in Secret Server, and supports many common providers.

how this feature solves it

Two-factor authentication ensures that even if a password is stolen, a malicious user can’t sign into Secret Server. It helps confirm that a user is who they say they are and not a malicious user impersonating them.

Is your organization forced to meet regulatory compliance guidelines? By using two-factor as part of the Secret Server login process you can solidify your information security practices required by many compliance mandates.

TRY IT FREE FOR 30 DAYS. It’s fast to install and easy to use!
Start your free trial of Secret Server using the blue trial form.
View Secret Server’s full list of user-friendly features.

Additional Information

You can use many different two-factor solutions including RSA, Smartphone apps such as Google authenticator, and Duo Security.

Secret Server also supports any two-factor provider that provides a RADIUS interface. This is an industry standard implementation and most commercial two-factor vendors support RADIUS.

Duo Security supports push notifications directly to the user’s phone, as well as hardware based tokens such as YubiKey. If the user’s app or token isn’t available they can also receive a phone call or text message for out of band authentication.

Duo Security for two-factor authentication

Google authenticator or any soft token app that supports TOTP (Microsoft Authenticator, Duo, Amazon MFA) can also be used. Soft tokens are a free and quick way to add additional security to your login process if no commercial two factor solution is available.

Google Authenticator for two-factor authentication

Secret Server also supports any two-factor provider that provides a RADIUS interface. This is an industry standard implementation and most commercial two-factor vendors support RADIUS.

Two-factor authentication with RADIUS and Secret Server

Benefits of using Two-factor authentication:

  • You can use your existing authentication infrastructure.
  • You can authenticate users before granting them access to Secret Server.
  • You’ll comply with information security policies.

Useful Links

Configuring Duo Two-Factor

Setting up RADIUS

View a list of two factor solutions customers are using with Secret Server

As you’re interested in securitycheck out the range of other security solutions Secret Server provides for organizations that need to meet industry standards.

Start Your 30-Day Free Trial
Secret Server full-featured solution

Choose your deployment option:
Cloud
On-Premise
By completing this form you are opting into emails from Thycotic. You can unsubscribe at any time.