CodeB Credential Provider V2
Multi-Factor Authentication (MFA) for Windows Logon & RDP
Windows Credential Providers play a crucial role in user authentication, serving as the main gateway for identity verification during logins and system checks. With the emergence of Windows 10, credential providers have gained even more prominence, broadening their applicability to app and website authentication and beyond. Microsoft offers a variety of credential providers for Windows, including password, PIN, smartcard, and Windows Hello features such as fingerprint, facial, and iris recognition. But what if your needs demand more versatility? Identifying this need, CodeB developed a user-friendly and flexible Credential Provider. Drawing upon over a decade of experience and insights from its widely acclaimed Aloaha Smartlogon, CodeB reimagined and rebuilt the CodeB Credential Provider from the ground up, offering a sophisticated blend of simplicity and functionality.
Protect your Windows Workstation
The Windows Credential Provider API is essential for system security, ensuring only authorized users access resources. As the digital world expands, so do security threats. Many businesses, especially those relying on contractors, are vulnerable to Advanced Persistent Threats (APTs) and hardware keyloggers. Notably, industries like payment card providers and those handling GDPR-sensitive data legally require two-factor authentication (2FA) for Windows. However, many enterprises view Windows 2FA as cumbersome, opting to risk data breaches and legal repercussions. Existing security solutions, often focusing on smart cards, have been slow to gain traction due to technical and trust issues. Moreover, navigating decisions about integrating with established Public Key Infrastructures (PKI) or using specific smart cards, such as those under the HSPD-12 or European directive 1999/93/EC, can be daunting. CodeB Credential Provider steps in with expert advice, tools, and software tailored to bolster security. Our platform supports a variety of logon tokens, from Plain USB Memory Sticks and NFC MIFARE to PKI Smartcards and Mobile OpenID Connect, presenting a streamlined defense against modern threats.
OpenID Connect Windows Logon
The common misconception is that amplifying Windows login security is a labyrinthine task, leading to a reliance on lackluster password strategies. Challenging this paradigm, CodeB Credential Provider simplifies the adoption of a Windows Logon Token. Be it a rudimentary USB Memory Stick, a cutting-edge X.509 PKI Smartcard, an Android Phone, a multifaceted Authenticator App, or a standard NFC/Mifare/Desfire Contactless Card, CodeB's innovative solution is set to transform your security landscape. Taking a monumental leap, CodeB Credential Provider now pioneers the acceptance of OpenID Connect Identity Tokens issued by mobile devices.
Access Windows Using NFC Card or NFC-Capable Mobile Device
For NFC Logon to Windows a compatible NFC Card like MIFARE or DESFIRE is required. We also accommodate various Company Badges, Student Cards, Bus Tickets, Credit Cards, Physical Access Cards, Hotel Cards, and more. If you lack a supported contactless card, simply download the "CodeB Authenticator" on your mobile device and your mobile device will act as NFC Token. If your token is linked to the system's default PIN (set in the registry with a default value of 0000), a simple tap with your NFC token will initiate the logon process.
Time-Based One-Time Password (TOTP)
Our advanced Credential Provider V2 also supports Time-Based One-Time Passwords (TOTP), enabling seamless logon to your Windows workstation, be it a local or domain account. After installation, initiate the TOTP Credential Linker and tailor the duration and algorithm for the generated one-time passwords.
Vast Array of Logon Tokens Supported
Not only mobile devices serve as logon tokens. CodeB also supports X.509 Certificates, optimally stored on a PKI Smartcard, in addition to NFC MIFARE and DESFIRE Cards, and basic Memory Sticks. We're open to incorporating more based on your specific needs.
CodeB Credential Provider Features
Discover the capabilities of our Credential Provider, fully developed in managed code and packaged as a standalone .NET Windows Library (DLL). It's not only adaptable via settings but also customizable through your unique plugin library. Rooted in Microsoft's ICredentialProviderCredential2 interface, it comes with an inbuilt Credential Provider Filter. Our CodeB Authenticator App can serve as a second verification layer, while it also accepts plain USB Memory Sticks and an extensive variety of NFC Tokens as login tokens.
In summary:
- Entirely developed using managed code.
- Packaged as a standalone .NET Windows Library (DLL).
- Install with a single click. No installation package necessary.
- MSI Installer available on request.
- Localized in English, German, Portuguese, Dutch, Maltese, Spanish, Italian, and French – ask us if your language is missing.
- Support for domain joined and standalone machines.
- Secure Remote Desktop (RDP), network shares and local login.
- Adjustable functionality through settings.
- Customizability with your personal plugin library.
- Simple to customize, such as adding your own logo.
- Built on Microsoft’s ICredentialProviderCredential2 interface.
- Comes with an integrated Credential Provider Filter.
- CodeB Authenticator App can serve as a secondary authentication factor.
- Use any TOTP Authenticator to logon to Windows.
- Use your Android Phone as Logon Token.
- Accepts mobile OpenID Connect Token.
- X.509 Certificates can be used as login tokens, ideally hosted on a PKI Smart Card.
- Accepts plain USB Memory Sticks as login tokens.
- Supports a wide variety of NFC Tokens as login tokens, including national identity cards, bus tickets, credit cards, MIFARE, DESFIRE, and many more.