Employees using MobileIron Access with SSO now no longer need to enter a username or password to login to their business apps.
MobileIron, a maker of enterprise mobility management software, on Nov. 17 added what it claims is the first secure single sign-on capability for native mobile apps to its frontline product.
Employees using MobileIron Access with SSO now no longer need to enter a username or password to login to their business apps. App developers no longer need to wrap their mobile apps or make code changes to support SSO. IT can ensure that only trusted devices and trusted apps access the best-of-breed cloud services their employees use, the company said.
MobileIron Access solves the pervasive app-to-cloud security gap that is widening in the enterprise as apps become the preferred user experience for cloud services and move business data to the mobile device. Adding SSO for native mobile apps to MobileIron Access is designed to optimize the user experience for cloud services such as Box, Microsoft Office 365 and Salesforce.
Key features include:
Context-sensitive: Only a trusted user on a trusted device using a trusted app should have access to enterprise data. Context of use is essential. A device might be trusted today and jailbroken tomorrow. An app might be unauthorized today and authorized tomorrow. MobileIron can be a system of record for device and app trust.
Certificate-based: Certificates are core to the architecture of modern authentication. Certificate-based authentication is more secure and offers a better user experience than traditional manual-entry passcodes. In July 2013, MobileIron was granted a U.S. patent for “Management of Certificates for Mobile Devices,” and in September 2016, MobileIron became the first EMM specialist to launch certificate-based derived credentials support for the emerging standard of post-password authentication in the U.S. federal government.
IdP-neutral: Companies should be able to choose a best-of-breed Identity Provider (IdP). MobileIron Access is a SAML-based solution that supports a company’s IdP of choice, such as Microsoft ADFS, Okta, OneLogin, or Ping Identity.
For more information, go here.
