privacyIDEA Authenticator Smartphone App
The privacyIDEA Authenticator App is a smartphone app that turns your phone into a second factor – a factor of possession.
The app can import HOTP and TOTP tokens and can handle SHA1, SHA256 and SHA512 hash algorithms. To import a new token the user simply scans a QR code that is compliant to the Key URI that is also used by the Google Authenticator.
The privacyIDEA Authenticator App can be used with Google and other services, that enroll an app via the QR code.
You can install the privacyIDEA Authenticator at no cost from the Google Playstore. or from the Apple App Store.
The Authenticator and the privacyIDEA Server
The privacyIDEA Authenticator unleashes its full potential when used with the privacyIDEA Server.
Classical smartphone apps like the Google Authenticator scan an unencrypted secret key from the QR code. This leads to security implications for companies, as we already pointed out in one of our blog posts.
In contrast to this the privacyIDEA Authenticator in combination with the privacyIDEA Server allows for a secure enrollment of the App. The user or an attacker can no longer easily copy the token during the enrollment process.
In addition, the privacyIDEA Authenticator also supports authentication via push notification in interaction with the privacyIDEA Server.
The privacyIDEA Authenticator is an ideal completion for other authentication devices used with privacyIDEA in a heterogeneous, flexible and secure authentication infrastructure.
Added Value for Company Use
Compared to simply using the generic privacyIDEA Authenticator app in the Google Play Store and Apple App Store, we strive to provide you as an enterprise customer with added value in terms of reliable operation and a consistent customer experience.
So the key aspects are:
- Early availability of the app as a beta, so that you can specifically conduct your own tests. We provide this by informing our customers about new releases early on in a dedicated mailing list.
- An extended testing period, possibly beyond the release date of the generic app, and precise control over the release date. We provide this by providing our customers with the app as an APK/IPA to publish to mobile device management themselves, or by publishing our own implementation of the app to the stores.
- A consistent appearance to the end user in your corporate design. We provide this by customizing the app for you in logo, color and title accordingly.