Airlock Login Airlock Login logo small x54

Practical, lean and secure: Airlock Login is the ideal complement to Airlock WAF for reliable user authentication and authorization. Airlock Login offers efficient solutions and easy handling at an attractive price. Airlock Login features convincingly high usability and straightforward configuration.

The Login component transforms the WAF component into a Web Entry solution in order to protect your web applications. This Web Entry solution can be enhanced further with additional modules, i.e. for turning it into an application portal or to add further security and operations features.

Solid basis for more

Because it is directly integrated with Airlock WAF, Airlock Login allows fast and convenient implementation of strong upstream user authentications with in-company single sign-on. There may be a need for extensive additional functions such as web service interfaces, step-up authentication workflows, support for cross-domain SSO or user self services. In these cases, migration from Airlock Login to Airlock IAM could not be easier: simply import a new license, and the Airlock IAM functions will be activated.

Secure and strong access control

Virtually every modern web application requires user identification to allow certain types and levels of access. Airlock Login provides upstream authentication and allows access control for customers and employees to be centralised and run independently of the business logic.

Single sign-on (SSO)

Airlock Login ensures that even legacy web applications with own user master records can be easily integrated in the standardized web single sign-on infrastructure.

Easy configuration

Configurations can be efficiently processed using the graphic editor. Airlock Login has a flexible architecture that permits configuration changes to the running time without any session loss or operational disruption.

Details Airlock Login

Airlock Login offers efficient solutions and easy handling at an attractive price. Airlock Login features convincingly high usability and straightforward configuration.

Advantages of Airlock

  • Central access point
  • Flexibility through decoupling
  • Security through upstream authentication
  • Reduction of dependencies
  • Lower costs
  • Shorter time to market
  • Secure single sign-on
  • WAF functionality: Effective against most common types of attack
  • PCI DSS compatible

Challenges for access control

  • Authentication is the key to security
  • Proprietary logins are insecure
  • Dangerous coupling of authentication with business logic
  • Strong authentication is poorly supported by applications
  • Heterogeneous technologies are often incompatible
  • Application technology requires login processes too frequently

The PCI Data Security Standard describes 12 security requirements. For at least 7 out of the 12 requirements, Airlock instantly helps to comply with the standard.

  • Airlock Login is a Web-based login application (JSP: Java Server Page) and requires a Java container on a Web server. It can either run on the WAF Tomcat server or on a dedicated server behind WAF.
  • Web-based administration interface
  • Strong 1 and 2-factor authentication
  • Password verification against directory (LDAP, MSAD®), OTP token server via RADIUS, RSA® SecurID®, MTAN, (SMS), client certificates
  • Role-based access control (RBAC)
  • Change and reset password via email
  • Portal function
  • Simple SSO (using cookies, HTTP headers, on-behalf form login, back-side Kerberos, etc.)
  • Integration in Airlock WAF is possible (internal Tomcat), however, non-Airlock components must not be installed on the Airlock WAF
  • Deployment normally on a separate application server

Further upgrade possibility: Because it is directly integrated with Airlock WAF, Airlock Login allows fast and convenient implementation of strong upstream user authentications with in-company single sign-on. There may be a need for additional functions such as web service interfaces, step-up authentication workflows, support for cross-domain SSO or user self-services. In these cases, an upgrade from Airlock Login to Airlock IAM could not be easier: Simply import a new license, and Airlock IAM functions will be activated.

License Details

There are no bandwidth or domain limitations! The Airlock Login is usually used together with the Airlock WAF. Below overview details the type of license required in such a scenario.

Airlock_logolet

License Part 1 (WAF Core)

WAF core part of the license: The max. number of backend applications which are to be protected. The license can be upgraded easily without changing the installation base.
Airlock_logolet

License Part 2 (Authentication Enforcement Module)

Second part of the WAF license: Capacity based license tied to the number of concurrent sessions which are authenticated on the Login.

The AE Module integrates the Airlock Login component on the WAF. The AE Module supports various backend directories like LDAP, Radius, Active Directory, ACE-SecurID, JDBC-DBs, File-DB and is flexible through additional plugins.
logolet_red_41x64

License Part 3 (Airlock Login)

The Login part of the license is based on the number of named users in the authentication repository.

Please use below contact form for any questions, comments or product inquiries.

 

This page contains copyright material from ©Ergon Informatik AG. Other products or trademarks mentioned are the property of their respective owners.