The Optimal Authentication Service™ (OAS) is a cloud-hosted Authentication-as-a-Service (AaaS) solution developed by Optimal IdM. It enables organizations to implement secure authentication methods—including multi-factor authentication (MFA) and passwordless access—across web and non-web applications. OAS is designed for rapid deployment and seamless integration using RESTful APIs, .NET SDKs, and jQuery plugins. It supports both multi-tenant and dedicated environments and can be used standalone or as part of a broader IAM strategy.

Features

• RESTful Web Service: Easily integrates with applications using RESTful calls, .NET SDK, or jQuery plugin.
• Multi-Factor Authentication (MFA):
  • Push notifications to mobile devices
  • Time-based One-Time Passwords (TOTP)
  • One-Time Passcodes via SMS, email, or voice
  • Fingerprint authentication for iOS and Android
• Passwordless Authentication: Enables login via push notifications without requiring passwords.
• Flexible Deployment: Available in multi-tenant or isolated/dedicated environments.
• Minimal Data Storage: Stores only device information for TOTP/push; no user data stored for OTP via SMS/email/voice.
• Windows Server MFA: Integrates with Optimal GINA™ Plugin (pGina) for MFA on Windows servers via console or RDP.
• Cloud Group Mapping: Automatically maps cloud groups to local server/domain groups during login.
• Account Lifecycle Automation: Automatically creates and optionally deletes local accounts based on cloud login status.

Benefits

• Enhanced Security: Protects against phishing and man-in-the-middle attacks with strong MFA options.
• Rapid Integration: RESTful APIs and plugins allow fast deployment across enterprise applications.
• User-Friendly Experience: Offers intuitive mobile-based authentication and passwordless access.
• Scalable Architecture: Supports small businesses to large enterprises with flexible hosting options.
• Reduced Compliance Risk: Limits personal identifiable information (PII) storage and supports secure access policies.
• Operational Efficiency: Simplifies authentication management and reduces reliance on internal development teams.