JERUSALEM, November 29, 2017 /PRNewswire/ —
AGAT Software, an innovative security provider specializing in external access, authentication and data protection solutions, has announced the launch of SphereShield for ADFS, a proprietary security solution that allows legitimate users to continue accessing their cloud-based services even when their account is under attack.
Enterprises utilizing cloud services, such as Office 365, typically use ADFS to extend their end users’ single sign-on (SSO) access to applications and systems outside the corporate firewall. Allowing an external service to authenticate against your local Active Directory (AD) presents a security challenge, and puts ADFS at risk for account lockout attacks (DDoS). Even without the password, an attacker can easily lock an account simply by sending failed login attempts with the employee’s user name, a value that is easily exposed.
Traditional solutions such as the built-in Windows 2012 Extranet Lockout protection – offer only a limited solution, as once it is activated, ALL external access is denied, with no exceptions. This means that while the internal account remains secure, legitimate users are still unable to access the account through ADFS, causing significant disruption to business operations.
SphereShield for ADFS delivers new-generation ADFS protection against automated attacks/bots and human-based attacks. The solution builds on AGAT’s proven track record by solving the issue of extranet lockout that prevents legitimate users from being able to sign in while their account is under attack.
Utilizing adaptive authentication options based on real time data analysis, SphereShield for ADFS offers more robust protection than Windows 2012 Extranet Lockout Protection. An advanced management portal enables proactive analysis, detection and auditing of security incidents. SphereShield for ADFS provides enterprises with peace of mind of knowing that their business critical applications are well secured.
Yoav Crombie, General Manager at AGAT commented, “Following real case studies of customers that have approached us for a solution that allows users to continue using ADFS when the extranet has activated the soft lockout protection, we came up with a unique approach for addressing this issue. These customers had their internal account protected, but as their main services (like Exchange) are in the cloud, they had suffered from significant operational downtime. Our solution is based on AGAT’s extensive experience in real-world dynamic authentication and data protection solutions that are widely deployed and successfully securing global enterprise applications across a range of industries.”
AGAT Software is an