Hideez Authenticator (EN)
  • Quick Overview
  • Primary Setup (admin guide)
    • Configuring an Active Directory Certification Authority
    • Server setup for passwordless login
    • SSO configuration
    • Next steps
  • User guide
    • Android guide
      • Mobile App Primary Setup
      • Software key enrollment
        • SSO enrollment
          • SSO enrollment (admin account)
          • SSO enrollment (user account)
        • PC Authorization Enrollment
          • Enrollment for Passwordless PC Authorization
            • Passwordless account re-enrollment
          • Enrollment for Password-based PC Authorization
            • Account roaming
      • Login with Hideez Authenticator
        • SSO login
          • SSO passwordless login
          • SSO login as a second factor
        • PC login
          • Passwordless PC login
            • Offline passwordless login
          • Password-based PC login
          • Login to the remote PC via RDP
      • PC lock
      • OTP generation
      • Software key disabling
        • PC login disabling
        • SSO login disabling
      • Service operations
    • iOS guide
      • Mobile App Primary Setup
      • Software key enrollment
        • SSO enrollment
          • SSO enrollment (admin account)
          • SSO enrollment (user account)
        • PC Authorization Enrollment
          • Enrollment for Passwordless PC Authorization
            • Passwordless account re-enrollment
          • Enrollment for Password-based PC Authorization
            • Account roaming
      • Login with Hideez Authenticator
        • SSO login
          • SSO passwordless login
          • SSO login as a second factor
        • PC login
          • Passwordless PC login
            • Offline passwordless login
          • Password-based PC login
          • Login to the remote PC via RDP
      • PC lock
      • OTP generation
      • Software key disabling
        • PC login disabling
        • SSO login disabling
      • Service operations
  • Troubleshooting
  • Help
  • Documentation portal
Powered by GitBook
On this page
  • Application Overview
  • Key Features
  • Requirements for Operation
  • For passwordless login to web services and applications:
  • For passwordless login to a PC (local Active Directory accounts):
  • For password-based login to a PC (password-based account):

Was this helpful?

Quick Overview

Application Overview

Hideez Authenticator is a free app for Android and iOS that turns your smartphone into a reliable key for logging into services and workstations. With this app, you can quickly, securely, and conveniently access your data.

Minimum iOS version: 13 Minimum Android version: 8

Hideez Authenticator is part of the Hideez Authentication Service and is used in corporate projects. For it to work, you need a configured server and the Hideez Client app installed on your computer.

Key Features

  • Passwordless Single Sign-On (SSO) to web services and applications using biometrics or QR code

  • Two-factor authentication (2FA) through SAML and OIDC protocols for secure access to applications and services

  • Passwordless login to Microsoft services (e.g., Exchange OWA)

  • Passwordless login to Windows workstations

  • Login to workstations via RDP using a smartphone

  • One-Time Password (OTP) generation for 2FA

  • FIDO standards support for high-security levels

  • Protection from phishing attacks, unauthorized access, and account hijacking

  • Compliance with strict security requirements for protecting critical data (FIDO Alliance)

Requirements for Operation

For passwordless login to web services and applications:

  • The user must be registered on the server with the app installed

  • Hideez Authenticator must be enabled as the authentication method for SSO

  • Web services and applications must support SAML, OIDC protocols

  • Integrations with web services via SAML, OIDC, WS-Federation protocols must be set up on the server

For passwordless login to a PC (local Active Directory accounts):

  • Corporate version of Hideez Client must be installed on the computer

  • The computer must run Windows 10/11 and support TPM 2.0 module

  • The computer must be connected to an Active Directory domain

  • A configured certificate server (Certificate Authority) in the Active Directory domain

  • The server must be accessible both for Hideez Client and the mobile app

  • A specially configured certificate template on the certificate server (see Certificate Authority settings in Active Directory)

For password-based login to a PC (password-based account):

Users can also log in to the workstation using a password-based account. To do so, they must set the password themselves once during the account creation process. After that, the login will proceed by scanning a QR code and confirming in the app.

  • Corporate version of Hideez Client must be installed on the computer

  • The user must be registered on the server

  • The server must be accessible both for Hideez Client and the mobile app:

    • The computer and smartphone must be on the same network, or the server must have a public IP address

NextPrimary Setup (admin guide)

Last updated 5 months ago

Was this helpful?

Українську версію цього керівництва можна знайти

тут.