Solutions
Choose a two-factor authentication (2FA / MFA) software which best suits your needs
Classic Two-Factor Authentication
The Protectimus two-factor authentication (2FA) solution is available either as a cloud-based service or as an on-premise platform.
Both tools allow you to securely protect your resources with two-factor authentication. They serve the same purpose, but differ in the model of the provision of services.
MFA for Active Directory, VPN, and On-Premise
Three Protectimus solutions for the most common enterprise authentication scenarios — secure your directory accounts, protect remote VPN access, and run your entire MFA stack on-premise.
Add multi-factor authentication to every Active Directory account — Windows logon, RDP, and AD-bound applications — without installing agents on endpoints.
- No agents on user endpoints to maintain;
- Works with on-prem AD, hybrid AD, and legacy applications;
- Protects direct AD authentication, including CLI access;
- Supports OTP authentication via the Protectimus SMART app and Protectimus BOT.
Protect every Cisco AnyConnect VPN session with strong authentication over standard RADIUS — no client-side changes required, fully compatible with your existing AD or LDAP user base.
- Native RADIUS integration with Cisco ASA and Firepower;
- Works with on-prem AD, LDAP, or a standalone user directory;
- Helps meet PCI DSS, NIST, HIPAA, and PSD2 authentication requirements.
Run the full Protectimus authentication stack inside your own perimeter — data center, private cloud, or air-gapped environment — with zero authentication traffic leaving your network.
- Fully self-hosted; no SaaS dependency;
- Integrates with AD, VPN, ADFS, RDP, OWA, and web applications;
- Supports clustered deployments for high availability;
- Built for HIPAA, DORA, NIS2, and data residency.
Database-Level 2FA (DSPA)
Protectimus DSPA (Dynamic Strong Password Authentication) is a security solution that integrates directly with a user directory or database (Active Directory, LDAP, custom databases, etc.) and replaces traditional static passwords with dynamic one-time passwords (OTPs) generated using the TOTP algorithm.
The administrator defines the dynamic one-time password rotation interval, which must be a multiple of 30 seconds. Password rotation policies can be configured individually for different users and groups.
As a result, users authenticate using temporary time-based one-time passwords generated in the Protectimus SMART authenticator app or delivered via the Protectimus BOT chatbot. Access to the app or chatbot can also be additionally protected with a PIN code or biometrics, providing an extra layer of security for the authentication process.
Electronic Visit Verification (EVV)
Usually, Electronic Visit Verification (EVV) providers use straightforward visit verification methods like GPS tracking or installing video cameras in patients’ homes. But many people, who receive home care, consider such EVV methods inappropriate because they violate the patient’s privacy. Using TOTP hardware tokens for electronic visit verification is much easier, more comfortable for patients, and more cost-effective. Add it to your EVV system and give your customers a wider choice of EVV methods.
Self-Service Password Reset (SSPR)
Protectimus Self-Service Password Reset (SSPR) lets users securely change or reset their Active Directory passwords and manage OTP tokens — all from a single portal. SSPR reduces IT workload, minimizes downtime, and keeps password and authentication management fully under organizational control.
With SSPR, users can:
- Change or reset AD passwords independently;
- Register, replace, or synchronize OTP tokens;
- Configure PIN protection on tokens;
- Authenticate via multiple methods (AD login, Protectimus password, email OTP, or security questions).
Learn more about Protectimus solutions for
Wi-Fi SMS authentication and free OTP delivery via Telegram, Viber, and Facebook Messenger
2FA Chatbots for OTP and Notification Delivery
SMS Based Authentication for Wi-Fi
Protect access to your guest Wi-Fi network using SMS authentication. When a user tries to connect to a Wi-Fi network, they enter their phone number. Protectimus sends an SMS with a TOTP password to this number. After entering OTP in the appropriate field, the user gets access to the Wi-Fi network.
Multi-factor authentication (MFA) solution for financial systems, healthcare, education, online gaming, legal and corporate security
Protectimus two-factor authentication (2FA) software suits any industry, including financial and educational institutions, healthcare companies, gaming, and online gambling platforms. It is also a must-have part of a corporate security infrastructure of any company.
Visit the Integrations page to find out how to integrate the Protectimus two-factor authentication software into your infrastructure. You can use an API, SDK, or ready-to-use integration components for Active Directory, Winlogon, RDP, Ubuntu, macOS, RADIUS, OWA, ADFS, Roundcube, Office 365, etc. If none of the listed solutions works for you, get in touch with our support team. We are always ready to customize our solutions to your requirements.
Financial Services
Protect access to users’ accounts with 2FA and use the data signing feature CWYS (Confirm What You See) to protect transactions from phishing, MITM, and data replacement attacks.
Online Gaming and Gambling
Protect user accounts on your online gaming, online gambling, or sports betting platform with Protectimus two-factor authentication to save users from fraud and credentials stuffing.
Education
Protectimus two-factor authentication solution and OTP tokens a widely used in universities, colleges, and schools to protect students’ and employees’ data from unauthorized access.
Corporate Security
We offer numerous solutions that help to secure corporate infrastructures with two-factor authentication: Protectimus 2FA for AD, ADFS, RADIUS, OWA, Windows, RDP, Roundcube, etc.
Healthcare
The Protectimus 2FA service and on-premise platform help to protect access to patients and staff data in hospitals; also, the Protectimus hardware tokens are used for EVV.
PSD2 and GDPR Compliance
Protectimus’ 2FA solutions will help you to comply with the European Union’s revised Payment Services Directive (PSD2) and General Data Protection Regulation (GDPR).
Knowledge Base
Сloud based two-factor authentication solution pros
Cloud authentication services have a number of advantages. Among all the multi factor authentication solutions, cloud security is one of the most comprehensive SaaS-based tool for effective 2 factor authentication. With cloud security, all strong authentication methods are supported, and the costs are kept on a minimal level. Cloud security integration is fast to start with, especially when turnkey packages are offered like at Protectimus. Cloud security solutions have handy monitoring and management tools. With cloud authentication, you can choose among a wide range of tokens.
How to get started with two-factor authentication
You have finally made a decision that you want to keep your data safe with secure two-factor authentication software and ready to apply possible options in your organization. This decision can influence your business greatly: now you can stop thinking of a number of possible risks. At the same time, a couple of more steps need to be taken, such as choosing one of the multi factor authentication solutions. At Protectimus, we offer several 2 factor authentication solutions for your company’s demands. Those solutions can be grouped into two: cloud service and platform. Both simple to use, but ready to serve.
Сloud based 2FA service vs on-premises 2FA platform
We care about our Customers and acknowledge that although their primary goal is the same – to get an applicable secure two-factor authentication software, the required add-ons can vary. You might want to use cloud security service, if your company is small and developing, and you need to obtain a quick solution for your data protection. Cloud based authentication requires minimal effort. Though if you are looking for an option to give you control over authentication server and tools, Protectimus Platform can work best for you.
How to get more control over two-factor authentication
Today, Protectimus has 2 security authentication solutions designed to satisfy data protection needs: cloud app security and platform-based option. When using cloud based authentication, you basically rely on our system that can be considered as an OTP-server you can utilize 24/7. However, if you install platform solution, you get the entire control over all items that operate to provide secure password authentication. You receive access to monitor the whole authentication security system. And all of the specific functions you require can be discussed with Protectimus team.
Can I try testing two-factor authentication service free?
We are sure that our authentication solutions are vital for those of you, who want to sleep tight and do more urgent or interesting tasks than constantly checking, if everything is fine with your internal system data. This is why we suggest you to have a look inside our system for free. Sign up free of charge and get $25 added to your Protectimus balance, which you can use later on when setting a plan. Checking the system from the inside will help you decide which OTP solution is best for you: cloud service or platform.