This is a guest blog post by Simon Berman, Chief Product Officer, Trusona
In today’s enterprise, IT must cater to a remote workforce to provide access to corporate data and applications anytime, anywhere, and from any device over any connection. But with the exponential growth in cyberattacks and their evolving sophistication, organizations are strained to stay ahead and quickly deliver the modern security they need.
Static credentials, first used in the 1960s, continue to be the primary weakness of any system. Common attack vectors such as phishing, keylogging, credential replay, and credential stuffing take advantage of the fact that, as users, we tend to reuse the same credentials across all our corporate and personal applications, many of which are already accessible to bad actors. And with increasingly restrictive corporate policies, users are left with complex passwords that further frustrate employees, leading to sticky-note reminders or forgotten passwords and lockouts.
The unfortunate reality today is that authenticating with a username and password no longer means really knowing who’s on the other end.
Trusona’s Passwordless MFA for Citrix Workspace
We’re excited to announce an integrated solution for Citrix Workspace that uses dynamic multi-factor authentication (MFA) to remove passwords from the user identity equation. Further, Citrix Secure Workspace Access provides a zero trust approach to securely access corporate web, SaaS, and virtual applications. With advanced security controls for managed, unmanaged, and BYO devices, it’s ideal for IT and employees alike.
The Trusona solution provides a secure, modern approach to authenticating employees, with an experience designed for the way people live and work. It offers passwordless MFA into Citrix Workspace, protecting your applications, virtual desktop infrastructure (VDI), and corporate data.
The integration is made possible via SAML, an industry standard for authentication, whereby Trusona serves as a third-party identity provider (IdP) to Citrix Workspace. Citrix Workspace provides organizations with a choice in selecting their primary IdP. With the integration of SAML, an organization can use a SAML-based identity provider of their choice. The Trusona solution confirms the true identity of the user, resulting in a SAML assertion that is passed to Citrix, authenticating the user.
The authentication process is initiated with a secure QR code scan from the user’s mobile device, which then confirms the user’s identity with a secure challenge and uses the device’s OS security, such as Touch ID or Face ID.
The solution also includes patented anti-replay technology, which prevents session replay attacks, resulting in significantly increased security. And it’s simple to set up. Here’s how:
- Set up a Citrix Connector to your Active Directory.
- Set up the SAML 2.0 support in Citrix Workspace.
- Sync the users from Active Directory to Trusona.
- Set up the SAML support in the Trusona Dashboard.
Why Trusona?
By focusing on authenticating who’s on the other end, not what’s being typed, you can:
- Mitigate the top attack vectors, including SIM swapping, keylogging, phishing, credential replay, credential stuffing, password reuse, lost or stolen tokens, and shared secrets — and any other credential-dependent attacks.
- Reduce costs by mitigating breaches, eliminating help desk tickets, and improving productivity.
- Enhance the user experience, leading to more satisfied employees.
Trusona is also part of the Citrix Ready Workspace Security Program ecosystem, providing passwordless MFA to Citrix Workspace.
The Citrix Ready Workspace Security Program provides customers a comprehensive partner ecosystem of tested, validated, and trusted security solutions for their Citrix Workspace. Customers can choose security solutions from partners across identity and access management; monitoring and analytics; device and endpoint security; network security; data security; and out-of-the-box SaaS and web app integrations.
Check out these resources to learn more the Trusona technology and how it seamlessly integrates with Citrix Workspace to enhance security:
- Video demo of the login user experience with Citrix Workspace
- Technical documentation detailing integration and configuration
- Trusona’s Citrix Ready partner page