SaaS, Premium Self-Hosted, or FREE OSS Self-Hosted
Enterprise Single Sign On (SSO) SAML SSO enables a secure authentication via an organization’s Identity Provider (IdP), as opposed to users or IT admins managing thousands, of usernames and passwords. With our product SAML Jackson, enterprise users can access your product via one of their secure IdPs (like Okta, Microsoft Azure, AWS, etc), which manages access and security for the entire organization.
Directory Sync Organizations use directories from different providers to manage users and enforce their access to organization resources. By integrating our Directory Sync product into your solution you can activate and deactivate user accounts, create groups, and keep your app in sync with the user directory in real-time. Supports the SCIM 2.0 protocol.
Additionally, we offer Audit Logs to track critical events in your application and a Data Privacy Vault to safeguard sensitive data.
BoxyHQ's answer:
BoxyHQ stands out for its comprehensive suite of security building blocks tailored specifically for developers. With features like SAML/OIDC Single Sign-On (SSO) and Directory Sync with SCIM 2.0, BoxyHQ simplifies identity management and access control for B2B SaaS companies. Its focus on providing a seamless and customizable solution empowers developers to enhance security without compromising user experience. Additionally, BoxyHQ offers Audit Logs to track critical events within the product and a Privacy Vault, an API to protect sensitive data.
BoxyHQ's answer:
BoxyHQ stands out for several reasons:
BoxyHQ's answer:
BoxyHQ's primary audience encompasses:
BoxyHQ's answer:
The inception of BoxyHQ is deeply linked with Deepak's journey as the former CTO of a cybersecurity scaleup. In his role, Deepak wrestled with the challenge of allocating resources to enterprise compliance features that diverged from their core value proposition. Alongside Sama, they witnessed the escalating tide of cyber crimes, compounded by the concerning statistic that around 70% of development teams often bypass essential security measures due to time constraints. Motivated by this shared purpose of bringing security earlier in the developer live cycle, they embarked on a mission to address these challenges head-on. BoxyHQ emerged as a solution designed to automate product security and provide low-code APIs for seamless integration, empowering developers to implement enterprise-compliant security measures effortlessly. Through BoxyHQ, Deepak and the team strive to alleviate the burden on development teams while fortifying organizations against the escalating threats posed by cyber crimes.
BoxyHQ's answer:
We value the confidentiality of our large enterprise clients due to NDA agreements. However, some of our notable customers include Cal.com, Dub, Supademo, Spike, among many others.
BoxyHQ's answer:
BoxyHQ uses the following technologies: - Next.js - PostgreSQL - Docker - Kubernetes
Based on our record, YubiKey seems to be more popular. It has been mentiond 10 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
People refer to blue keys as 'old' but yubico.com is clear...Security Key Series has been updated to black in 2023 with the same features as the Security Key Series in blue. Blue keys only available through partner sites. Source: about 1 year ago
Sorry if this has been asked a lot already - I've tried searching yubico.com and this subreddit, but I haven't found a fix for it. Source: about 1 year ago
And this is what passkeys fix. So instead you get your parents a set of yubi-keys for their access to 1-pass. * Whenever they are using a known machine (their laptop, phone, etc.) an biometric+device security is used, that's your 2FA. * When in rare machines, or doing things that are probably not ideal (like trying to load and read account information stored in the password manager) they'd have to pull up... Source: about 1 year ago
You know how sites ask you to use 2FA by texting you a code and having you put it in? It lets you do that by pressing the gold button on the front. It's better than using phone multifactor authentication, because it's possible for hackers to either trick you into giving them 2FA codes (There's a video on the front page of yubico.com right now explaining how that can happen), or to manipulate your phone carrier... Source: over 1 year ago
Not a solution to your exact problem, but since you're already in this pickle, I recommend getting a couple security keys (Yubikeys directly from yubico.com). You can then use Yubico's authentication app + security key which works with any service requiring an authetication app (including CDC - this is what I use). It's much easier to restore and a lot more secure. Source: over 1 year ago
Google Authenticator - Google Authenticator is a multifactor app for mobile devices.
Auth0 - Auth0 is a program for people to get authentication and authorization services for their own business use.
Authy - Best rated Two-Factor Authentication smartphone app for consumers, simplest 2fa Rest API for developers and a strong authentication platform for the enterprise.
Skyflow - Skyflow’s data privacy vaults deliver security, compliance and governance via a simple API
Microsoft Authenticator - One app to quickly and securely verify your identity online, for all of your accounts.
Keycloak - Open Source Identity and Access Management for modern Applications and Services.