Silverfort and Token2 Integration

Apply Token2 FIDO2 MFA protection and risk-based authentication to access requests for all on-prem and cloud resources, including those that could not be protected before.
Multi-factor authentication (MFA) is the most effective hardware-based security measure against identity-based attacks. However, extending FIDO2 MFA keys to all environments to provide secure access to critical resources has proven difficult. To address this challenge, Token2 and Silverfort offer a native integration to deliver real-time risk analysis and MFA protection.

Token2 + Silverfort Extend MFA Protection to:

• Legacy applications
• Command line access tools (PowerShell, PsExec, etc.)
• External and internal admin access
• File shares and databases
• IT Infrastructure
• Desktop login
• RDP and SSH
• SaaS applications
• And more

Comprehensive Coverage with Token2 and Silverfort

By integrating Silverfort and Token2’s PIN+ Series (which is open-source and has undergone a public security assessment), users can increase their resilience to identity threats on two fronts. First, customers can extend FIDO2-enabled MFA protection to resources they could not protect before. Second, Silverfort enforces adaptive authentication and Zero Trust security policies with Token2 FIDO2 keys to maximize security without disrupting legitimate users. Together, these capabilities enable users to configure adaptive MFA policies triggered only when a risk is detected to optimize users’ experience and avoid MFA fatigue.

How Token2 and Silverfort Work Together

Whenever a user attempts to access a resource, Silverfort analyzes the context of the user's full on-prem and cloud authentication history to determine whether an MFA step-up is justified. If MFA is required, a push request will be sent to the user's machine, and the user will be prompted to insert their Token2 FIDO2 key to verify their identity and approve the MFA request. Silverfort also leverages its native AD integration to perform a similar risk analysis when a user attempts to access an on-prem resource. When a risk is detected, Silverfort will send a Token2 FIDO2 MFA notification to the user, thus extending its coverage to the entire environment.