Scribd
Upload
31 views3 pages

CyLock AD Integration

This document discusses integrating the CyLock authentication technology with Active Directory (AD). It begins by stating that while Azure AD is available, most organizations have already invested in AD and it is best to leverage that existing infrastructure. CyLock provides two-factor authentication and has been integrated with various systems. Integrating with AD would allow CyLock to provide a single identity management solution. The CyLock-AD integration would enable users to authenticate with AD, reset/update their passwords and accounts, and eventually authenticate with Azure AD as well. It describes the components, technologies, and process flow for how CyLock would authenticate users via their mobile devices to gain AD access.

Uploaded by

Dhivya vikram
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
31 views3 pages

CyLock AD Integration

This document discusses integrating the CyLock authentication technology with Active Directory (AD). It begins by stating that while Azure AD is available, most organizations have already invested in AD and it is best to leverage that existing infrastructure. CyLock provides two-factor authentication and has been integrated with various systems. Integrating with AD would allow CyLock to provide a single identity management solution. The CyLock-AD integration would enable users to authenticate with AD, reset/update their passwords and accounts, and eventually authenticate with Azure AD as well. It describes the components, technologies, and process flow for how CyLock would authenticate users via their mobile devices to gain AD access.

Uploaded by

Dhivya vikram
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

CyLock – Active Directory Integration

Need Statement: Is Active Directory still relevant when Azure AD services are available and many
companies are moving towards Azure AD?
Answer is YES, as most organizations have already invested in on-premises Active Directory and will find
it best to configure it thereby, allowing the organization to leverage the investment in on-premises AD
infrastructure. Combining with the multi-factor authentication capabilities and user self-service
password reset makes for a compelling story for any organization to continue with existing AD.
Organizations can also think of using Azure AD by going for a hybrid model.
What is in for CyLock?
CyLock is an advanced Out-of-Band authentication technology which provides a secured, token-less 2FA
using end users mobile phones and tablets with an enhanced end-user experience.

CyLock has been integrated with RADIUS, OpenVPN, Office 365, ADFS etc. Integrating with Active
Directory will enable CyLock to provide a one stop solution for an organization to provide secured
identity management.

CyLock – AD Features:

1. Authenticate with on-premise Active Directory


2. Self Service Password Management
a. Securely Reset AD user password
b. Unlock accounts
c. Update Personal information
3. Authenticate with Azure Cloud AD (Future)

CyLock – AD Solution Components:

# Component Name Functionality Technology / Tools


1 CyLock Credential 1. Default Login (Accept user 1. MS Windows C++
Provider name & Password)
2. Change / Reset Password
3. Unlock User
4. Update User Information
2 CyLock Authenticator 1. CyLock Device Selection and 1. MS C#.NET
Online Authentication
2. CyLock Offline authentication
3. New User Registration
3 CyLockAD Middleware 1. Expose REST APIs for CyLock 2. Python, Django framework,
(LDAP) Credential provider SQLite
2. Expose REST APIs for CyLock
Authenticator
3. Integrate with on-premise
Active Directory
4. Integrate with CyLock Auth

Page 1 of 3
server
5. Provide response to Credential
Provider
6. Configure AD Server details
7. Manage Offline OTP details

CyLock – AD Architecture

Page 2 of 3
CyLock – AD Process Flow

Flow for existing user with 2FA enabled

CyLock CyLock-AD
CyLock CP Authenticator Middleware AD Server

User Name / Password


Failure

User Name / Password

Success / Failure
Success / Failure
Success

Transfer control to bypass CyLock Auth Server


CyLock Authenticator
bypass

bypass response bypass response

Get2famethods Get2famethods

Get2famethods response Get2famethods response

doauth doauth

Success / Failure doauth response doauth response


Success – Login
to Windows

Page 3 of 3

You might also like