What's ARK2FA

ARK2FA is a secondary authentication (MFA) solution that works integrated with Active Directory Federation Services (ADFS) and RADIUS support. Its primary purpose is to strengthen user authentication, providing protection against unauthorized access to corporate resources. After entering their standard username and password, users complete a second verification step via SMS/OTP (one-time password) codes sent to their mobile phones or through authenticator applications.

Introduction

You can use ARK2FA to provide the following security activities and strengthen authentication:

  • ADFS Integration: It integrates seamlessly with Microsoft ADFS, working compatibly with existing infrastructure.

  • Application Protection: Provides multi-factor authentication (MFA) for access to critical web applications like Exchange OWA.

  • VPN Security: Secures VPN access with two-factor authentication thanks to RADIUS support.

  • Unlimited Integration: Allows you to reduce costs by enabling two-factor authentication for all your applications that can be integrated (without an application limit).

  • Multi-factor authentication processes performed on mobile devices operate within the solution without requiring any VPN connection. Users can complete the authentication steps from outside the organization via a standard web interface, using direct internet access.

ARK2FA maximizes security by offering flexible authentication methods:

  • SMS/OTP Authentication: Sends one-time passwords to users' mobile phones.

  • Global Authenticator Support: Compatible with popular mobile authenticator applications.

  • Push Notification: Offers instant notification approval support through Arksoft's own mobile ARK4UTH application.

Technical Specifications

ARK2FA v2.0 and higher versions include the following technical infrastructure features:

  • Active Directory Integration: Works fully integrated with Active Directory via an LDAP connection.

  • Flexible Deployment Models: Supports both internal network and DMZ (proxy mode) installation scenarios.

  • SQL Server Support: Works with Microsoft SQL Server (Express, Standard, or Enterprise) versions as its database.

  • Modern Infrastructure: Runs on .NET Core 8.0 and IIS (Internet Information Services).

  • Secure Service Account: Supports GMSA accounts, recommended as a best practice, for the Application Pool identity.

  • Easy Installation: Initial configuration steps (IIS, database, AD connection) are easily completed with the First Time Wizard (FTW).

  • Secure Storage: Stores settings (appsettings.json) and passwords in the database in encrypted form.

PreviousOverviewNextFAQs

Last updated