Windows 2FA Login

Pioneering Windows Login with OpenID Connect Identity Token

Never Face Compromised User Credentials Again

CodeB Credential Provider revolutionizes the standards of security and ease in Windows 2FA login methods. By following our guided steps, users can effortlessly configure their systems to accommodate a range of login methods, from basic USB Memory Sticks to sophisticated TOTP Generators, PKI Smartcards, and the latest addition, OpenID Connect.

Unified Authentication Framework

OpenID Connect builds upon the OAuth 2.0 protocol, providing a standardized framework for identity verification. This ensures compatibility and ease of integration with various platforms, including Windows.

Rich Identity Tokens

OpenID Connect issues JSON Web Tokens (JWT) that contain a wealth of user information, known as claims. These claims can be used to gather user details without having to query the user database every time, enhancing the speed and efficiency of the authentication process.

Enhanced Security Features

OpenID Connect offers several built-in security mechanisms, such as ID tokens, user info endpoints, and discovery services. These features ensure that the authentication process is not only secure but also resistant to common threats like phishing attacks, man-in-the-middle attacks, and token interception.

Password and username login page, secure access on the internet, Online user authentication sign-in

Robust 2FA security for Windows is essential

In today's digital age, CodeB emphasizes robust 2FA security for Windows workstations. While many view enhanced login security as complex, CodeB Credential Provider makes it straightforward.

From basic USB sticks to advanced X.509 PKI Smartcards and OpenID Connect Tokens from mobile devices, CodeB is reshaping security standards.

The Imperative of Decentralized, Protected Keys

The "Storm-0558" event underscored the inherent risks of centralized Identity Signature Keys. Historically, breaches of these keys have paved the way for unauthorized access.

Leveraging the proficiency of the CodeB Identity Broker team and the capabilities of the CodeB Authenticator, your mobile device transforms into a bastion of personal identity.

The key, crafted and safeguarded within the mobile's secure key store, effectively reduces the threats tied to compromised OpenID Connect Signature Keys.
Digital data security and mobile phone security technology

Delving into CodeB Credential Provider Editions

Conference
All in One

System Tray Stand-alone Application

A comprehensive solution, this edition amalgamates all essential components into a singular system tray application, ideal for users who prioritize directness.
For the professional

Suite of Tools and Applications

This edition resonates with users who value granularity and precision. It unfurls a collection of standalone tools and applications, making it a favorite among enterprise setups where bespoke solutions are paramount.
Colleges Discussing
Login with Mobile OpenID Connect Token

Detailed Guide to CodeB Credential Provider

2

Download and initiate the CodeB Authenticator App from the Google Playstore using the button below. Your mobile will serve as a dedicated OpenID Connect Identity Provider.

3

After downloading, extract the "codeb_smartloginhelper.zip" file to your desired directory.

4

Navigate to the "CredentialProviderInstaller.exe" tool, execute it with elevated administrator rights, and click the “Install Credential Provider” button for a seamless library installation and registration.

5

If you have a license key, it's essential to use it; otherwise, reach out to CodeB's support channels, such as email or website chat, for an Evaluation key, then launch the "SmartLoginLicensing.exe" application with elevated permissions, enter your license details, and click the “Save Key” button.

6

Ensure the CodeB Authenticator is installed, configured, and started on your mobile, then proceed to associate your local or domain accounts with your mobile's OpenID Connect Identity Provider.

Binding to Mobile

Initiate synchronization by launching the "LinkOpenID.exe" tool, entering your Username/Domain (optional), mobile number, and the Binding PIN, which serves as an additional security layer and should match in both the CodeB Authenticator App and the CodeB Credential Provider.

For a streamlined Windows login experience, assign an Alias to your mobile number, enabling you to use the Alias instead of the full mobile number.

After setting up, click "Link" and confirm the connection on your mobile's CodeB Authenticator App.
CodeB Mobile OpenID Connect Credentials Binder
CodeB Credential Provider

Finally the Windows Logon

At the Windows login interface, users can effortlessly switch between the native Windows credential provider and CodeB’s variant.

For authentication, simply input your configured Alias or mobile number into the username field, leaving other fields untouched as authentication approval is managed via your mobile.

A notable feature is the capability to obscure the default Windows Credential Provider using the CodeB Credential Provider Filter, a topic that warrants a comprehensive exploration.

Forge Ahead with CodeB - Let's Collaborate!