neXus Hybrid Access Gateway 5.3 - Authentication, Self Service and Federation

neXus is proud to announce the availability of neXus Hybrid Access Gateway 5.3.

We have been working hard with 5.3 during the spring and now it is finally time for a release. neXus Hybrid Access Gateway 5.3 brings lots of new features. The release is focused on authentication methods and SAML federation technology.

End user tend to forget their passwords from time to time. Especially during the holidays. Letting help desk reset all the passwords is cost driving. With 5.3 you easily can push the end-users to reset their passwords by them self, even in the Active Directory. The only thing you need is a channel for distributing the reset codes, like mail or mobile. And neXus Hybrid Access Gateway 5.3 of course...

Your password policy might require the end users to change their passwords at a regular basis. With Hybrid Access Gateway 5.3 end users will be notified when the Active Directory Password is about to expire and being offered to set a new password. If a password has expired the user will be required to set a new one to be able to log on.

neXus love standards. We have been working with the Open Authentication standards for several years and Hybrid Access Gateway now features Time-based One-Time Passwords, TOTP, and Open Authentication Challenge-Response Algorithm, OCRA. TOTP is used to validate One-time Passwords from standard hardware tokens to authenticate the end-users. OCRA, is challenge-response based and can be used to authenticate users as well as for sealing transactions using electronic signatures. You can of course use any hardware token following the Open Authentication standards with Hybrid Access Gateway.

Do you offer e-services to Finnish citizens? Then you can secure your services using neXus Hybrid Access Gateway. 5.3 support the Finnish eID federation Tupas.

Invisible Token is they way to offer a secure login using the web browser without bothering the end users too much with One-time Passwords. The OTP:s are automatically calculated and provided under the hood in addition to validation of username and password. Version 2.0 of Invisible Token really improves the user experience. Simplified provisioning is introduced to make the Invisible Token activation easier. With simplified provisioning the Invisible Token can be activated on a single device using only username and password. Another new way to activate Invisible Token is to let another person receive the activation code. The code, used to activate Invisible Token, can be sent to a colleague, your boss, a teacher or a parent and so on. Any person that you have a confirmed link to. Emergency logon can be enabled by sending the activation code to IT help desk.

The SAML engine is redesigned to match todays and future requirements. The engine is of course saml2int compliant both as Identity Provider and Service Provider and you can join same federation or several federations, several times in same system... Key rotation makes sure that you can trust and use current and future keys that are used to sign SAML requests and responses. Metadata can be consumed automatically and when it comes to LOA and SAML Discovery that are managed in an intuitive way.

We are proud to announce that neXus Hybrid Access Gateway 5.3 is released and is available for download. To upgrade just logon to the Administrators Web GUI, click Upgrade and select to Download 5.3.