Authentication

The second pillar of security, authentication is the process of verifying the identity of a user based on a set of credentials.

FintechOS provides the following authentication mechanisms:

FintechOS Authentication

You can log into FintechOS using the account credentials provided to you by your FintechOS administrator.

FintechOS provides you with extensive security measures to protect users access: ensure password security and unauthorize inactive users.

Microsoft Active Directory Authentication

Access within the platform is granted through authentication with FintechOS account credentials (username and password). The built-in integration with Microsoft Active Directory (AD) allows you to access FintechOS using your AD credentials.

Azure Active Directory Authentication

If your organization is using Azure Active Directory (Azure AD) for identity and access management, you can map Azure groups to FintechOS Security Roles using the OpenID authentication protocol. This allows users to log in to FintechOS using their existing Azure AD credentials.

OpenID Connect Authentication

OpenID Connect is an interoperable authentication protocol based on the OAuth 2.0 specifications which uses straightforward REST/JSON message flows. It enables developers authenticate the users across their apps without having to own and manage password files. OpenID Connect securely identifies the identity of the person that is using an app.

The FintechOS built-in integration with Okta (a certified OpenID Connect provider) provides user authentication and single sign-on (SSO) functionality.

SSO means being able to access all the applications and resources that you need to do business, by signing in only once using a single user account. Once signed in, you can access all of the applications you need without being required to authenticate (for example, type a password) a second time.

Active Directory Federation Services

This service provided by Microsoft manages the user sign-in information for members of a platform. If your organization is using ADFS for identity and access management of your users, it is possible to map the users already existing in ADFS to FintechOS.

Multi-Factor Authentication

Multi-Factor Authentication is a method of authentication that requires the use of more than one verification method and adds a critical second layer of security to user sign-ins and transactions. Multi-Factor Authentication helps safeguard access to data and applications while meeting user demand for a simple sign-in process. It delivers strong authentication via a range of verification options: phone calls, text messages, or mobile app notifications or verification codes and third-party OAuth tokens.

FintechOS Auth Provider

For the authentication process, it is possible to implement if needed within the web.config file a special request upon logging into the FintechOS Portal or FintechOS Studio. The full password is never requested in order to log in successfully, but only random characters contained in the password of a user.