Every organisations has different core infrastructure, and along with that, different requirements for authenticating against their IT Systems.
Passwordstate offer two types of authentication methods - Active Directory Integrated, and Forms-Based Authentication.
Active Directory Integrated Authentication
Passwordstate leverages the investment your have made in your Active Directory implementation, and fully supports multiple Active Directory domains and forests.
In addition to importing user credentials direct from Active Directory, Passwordstate also uses the authentication mechanism inherent to Active Directory & Internet Information Services.
When using Active Directory Integrated Authentication user's are not required to provide any login details to authenticate to Passwordstate - their browser passes through their already logged in credentials to the web tier, which then passes on to the database tier for validation.
If your preference is not to use the Active Directory Integrated authentication method, you can opt for Forms-Based authentication. With Forms-Based authenticatio, there is no reliance on AD at all, and users must supply username/password every time they wish to use Passwordstate.
Please Note: When using Forms-Based authentication, sychronizing Security Groups with Active Directory is not possible. Local Passwordstate Security Groups are still available.
Optional ScramblePad Authentication
When using Active Directory Integrated authentication, you also have the option to enable a secondary ScramblePad authentication. Individual users can enable ScramblePad authentication, or Security Administrators can elect to make it mandatory for all users.
ScramblePad Authentication works by assigning a Pin number to a user's account. When asked to authenticate, the user must match their pin number against a series of randomly generated letters.