HP ProtectTools Multi-Factor Authentication provides a UK Government approved way of protecting your system from unauthorised access. It strengthens the authentication sub-system by forcing users to successfully provide multiple factors of authentication before they gain access to the desktop.
When using Multi-Factor Authentication the system is configured to prompt for multiple factors of authentication from the user at login. For example, username/password and token/PIN. If the user successfully provides all factors then they will be granted access to the desktop. Should one or more of the factors fail, then access will be denied with neither the user experience nor screen messages providing an indication of the failing factor(s).
Multi-Factor Authentication is tightly integrated with Microsoft® Windows® to ensure standard operating system functionality is not impacted; standard login ‘tile’ interfaces, change password, change pin, password expiry, smart card unblock and cached authentications all remain unaffected.
Should situations arise where a user cannot provide all the required factors of authentication, for example, a forgotten smart card, then tightly controlled single factor override can be configured.
Multi-Factor Authentication may be used in conjunction with HP ProtectTools Authentication Services.
HP Protect Tools Multi-Factor Authentication has been approved through CAPS to Baseline grade.
HP Protect Tools Multi-Factor Authentication is a technical countermeasure that may be used in conjunction with other physical procedural personnel or technical countermeasures for systems at any classification.
HP ProtectTools Multi-Factor Authentication may be used in conjunction with HP ProtectTools Authentication Services.