On-Premise MFA Platform

Keep full control by installing the On-Premise Multi-Factor Authentication Platform on your organization’s infrastructure

Download Installer (Windows)

Scalable On-Premise MFA Solution

The Protectimus On-Premise Multi-Factor Authentication (MFA) Platform can be installed on local infrastructure, or on the client's private cloud

You retain control over confidential information (user data, secret keys), and you can secure the multi-factor authentication server to meet even the most stringent security requirements. For example, you can place the on-premise platform on an isolated network without internet access and add additional protection using firewalls.

The Protectimus On-Premise platform for multi-factor authentication supports multidomain environments, clusters, replication, and backups. Additional MFA authentication platform features can be developed upon request. You can also link your SMS provider using the SMPP protocol.

Cross-platform

The Protectimus on-premise 2FA server is written in Java to be platform-independent. It supports Linux, FreeBSD, Windows, and other operating systems.

Multidomain environments

The Protectimus multifactor authentication platform supports user authentication in multidomain environments with Active Directory. This means that you can set up two-factor authentication for users on different domains within a single organization.

Replication and backup functionality

The Protectimus On-Premise two-factor authentication solution supports backups and data replication functionality to prevent the loss of valuable data.

Advanced Security Features

Data Signing or Dynamic Linking

CWYS (Confirm What You See) technology protects against phishing, banking Trojans, data replacement, etc. One-time passwords are generated using data about the current transaction, such as amount, currency, and payment purpose.

Self-Service Portal​

Your users can independently manage their personal data, MFA device (tokens) or MFA app (adding, deactivating, reissuing). The system administrator determines which actions are available to users.

Integrates with Your Chosen SMS Provider​

SMS authentication is available, so you can link any SMS operator of your choosing. The on-premise 2FA platform offers deep integration with your SMS provider over the SMPP protocol, enabling you to manage every service event and status.

Access Filters

You can set up the Protectimus MFA authentication system so that only users from selected countries and at a specific time of the day could access their accounts. For example, you can allow access only to users from Ireland from 8:00 to 18:00. Otherwise, access will be denied.

A Cluster-Based, Fault-Tolerant System

To ensure uninterrupted operation of your MFA server, you can deploy it to a cluster of several servers (we recommend using at least three nodes.) You’ll need a load balancer to distribute the load among them.

Analysis of the User Environment

Protectimus 2FA platform allows analyzing the user’s environment (browser version, operating system, language, screen resolution, color depth, etc.) and requesting MFA only when the allowed number of mismatches is exceeded.

Here what our customers say

  • SICIM
  • DXC
  • Volet

At the moment, my assessment of the company’s work is 10 out of 10. An important factor in choosing this two-factor authentication provider was the possibility of customizing the 2FA system for our project. After we got in touch with the Protectimus team and explained the task, they implemented the necessary functionality for us free of charge. There were no problems. Everything works well.

Cristian G, System Administrator at SICIM

Protectimus was chosen because of their unique Dynamic Strong Password Authentication (DSPA) technology. Using this product, we added 2FA to all the systems we needed to protect in one fell swoop, as it allowed us to integrate two-factor authentication services straight with Active Directory. We have been using the Protectimus two-factor authentication platform for a year and are satisfied with this product.

Mauro S., Xchanging Italy a DXC Technology

Over the past years, we’ve had only positive cases of working together. Protectimus helped us at every stage, from integration to adding additional features that solved our specific tasks. Using Protectimus, we are confident that Volet infrastructure and users are well protected. Protectimus gives us what money can’t buy – not a sense of security, but REAL security. I highly recommend it for implementation.

Artem Sh., Info Security Director at Volet

Deployment Specs

  • Supports Linux, FreeBSD, Windows, and other operating systems.
  • Supports Google Chrome, Mozilla Firefox, and Internet Explorer.
  • All system components comply with the Java Programming Style Guidelines; the DRY (Don’t Repeat Yourself), DIE (Duplication Is Evil) and TDD (Test-Driven Development) development practices; and the OATH (Initiative for Open Authentication) OTP authentication standards.
  • Protectimus multi factor authentication solutions use the HMAC, HOTP, TOTP, and OCRA algorithms to generate one-time passwords.
  • Before installing the Protectimus multi authentication platform on your server, Java (JDK version 8) must be installed, as well as the PostgreSQL DBMS, version 10 or later. In PostgreSQL, a new database must be created for use by the platform.
  • To deploy the Protectimus multi factor authentication platform on private cloud infrastructure, the cloud must meet the following requirements: CPU: 2 cores, memory: 8 GB; OS: Linux; cloud disk: 20 GB; load balancer.

Pricing

Pricing starts at $199 per month for 99 users

The greater the number of users, the less the cost per user.
Additional technical support can be purchased separately.

Lifetime License and Enterprise Pricing Plan

Includes:

  • Lifetime license for any number of users;
  • Customized MFA platform tailored to your needs;
  • Custom integrations;
  • Dedicated engineers and direct support.

Contact our sales team at sales@protectimus.com
 for pricing information.

Supported Two-Factor Authentication Methods

Available integrations

Download Installer (Windows)

Add two-factor authentication to Windows 7, 8, 8.1, 10, 11, and Windows Server 2012, 2016, 2019, 2022. Protects both local accounts and remote desktops (RDP).

Set up two-factor authentication for Outlook Web App (OWA) and Exchange Admin Center (EAC) using a ready-to-use OWA plugin, compatible with Exchange 2013, 2016, and 2019.

The Protectimus MFA Platform seamlessly integrates with Active Directory Federation Services (ADFS 3.0 & 4.0), enhancing security with minimal effort.

Use Protectimus ADFS or Office 365 components and the On-Prem MFA Platform to enable single sign-on (SSO) with extra security from time-based one-time passwords.

For quick and easy integration, take advantage of our ready-to-use SDKs for Java, PHP, and Python.

Protectimus DSPA (Dynamic Strong Password Authentication) integrates directly with AD, LDAP, or any user directory, enabling you to secure access to all nodes in your infrastructure at once.

Secure your VPN, Wi-Fi, firewalls, and any RADIUS-based system with two-factor authentication. Protectimus integrates seamlessly with Cisco, Citrix, VMware, FortiGate, SonicWALL, OpenVPN, etc.

The Protectimus two-factor authentication plugin for Roundcube lets you easily integrate a professional multi-factor authentication solution into Roundcube webmail client.

Integrate the Protectimus On-Premise Platform with Ubuntu or macOS via RADIUS to secure your corporate accounts with multi-factor authentication.

You can use our API for direct integration. Our API is designed according to REST principles. Data is transmitted as XML or JSON.

Ready to get started?

Ready to strengthen your security with Protectimus multi-factor authentication? Our comprehensive guides will walk you through the seamless integration process. Our dedicated support team is ready to assist you. Get started today and enhance your authentication with Protectimus.

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.