1Kosmos and Microsoft

The Business Challenge

Modernizing identity and access management (IAM) with Microsoft Entra ID is a big step forward to protect new account openings, secure logins, and prevent fraud, but it is not enough. Organizations need to consider passwordless access when moving from Active Directory to Entra ID. Additionally, this migration may inadvertently introduce security gaps due to a siloed approach when securing systems that fall outside of the Microsoft environment.

Our Advantage

The 1Kosmos Advantage

1Kosmos provides verified identity and passwordless MFA (Multi-Factor Authentication) by default for every login without the old-fashioned codes and security keys, but not just for most all environments even those supported by Entra ID. 1Kosmos also gives users a consistent passwordless login experience for legacy on-premises technologies, Active Directory, Windows, Mac, iOS, Android, Linux, and Unix systems

Most importantly, by replacing passwords with a verified digital identity, 1Kosmos shifts the traditional balancing act between security and convenience by giving IT (Information Technology) and Security teams the flexibility to adjust identity assurance levels for different
users and systems based on the business needs without adding significant friction to the user experience.

Key Use Cases:

Deploy 1Kosmos as an External Authentication Method (EAM) within the Entra Platform
Utilize the Convenience of Facial Biometrics
Extend Passwordless MFA to Non-Supported Environments.
Verify Identity up to IAL2 for High Assurance Logins
Connect and Embed with Superior Interoperability and Extensibility.
Ensure Authentication Resiliency
Secure Authenticator Enrollment and Accessible Self-Service Password Reset and Account Recovery on any device, anywhere
Secure Authenticator Enrollment and Enable Passwordless Account Recovery Anywhere
Support Password Access for Restricted Environments Where Mobile Devices are Not Accessible.
Secure Remote and Virtual Desktop Login.

1Kosmos can easily enhance an organizations Microsoft investment by filling in the identity and authentication gaps a Microsoft deployment can introduce.

External Authentication Method (EAM)

Organizations can leverage 1Kosmos as a Microsoft External MFA provider to protect all resources behind ADFS or Entra ID. Use conditional access to manage roll out to select groups of users or applications. Leverage any of the 11 authenticators matched to risk or levels of identity assurance, including facial biometrics.

Verified Identity

Ease employee onboarding and deliver a high level of trust behind every login for specific systems or groups of users by implementing high assurance identity verification. Suitable to support even the most privileged, mission-critical functions. Verification support for 158 countries and 1000’s of documents to protect Entra or non-Entra applications, services, data, and systems.

Interoperability and Extensibility

Utilize fifty out-of-the-box connectors, an open API framework, plus a flexible SDK, to standardize authentication across the enterprise. Coverage provides a more flexible framework spanning Entra, Active Directory, SSO, PAM, plus all additional authentication requirements.

1Kosmos Features and Benefits

Extend Passwordless: Provide passwordless access to macOS, Linux, and Unix and non-SAML based applications and services.
Virtual and Higher Privilege Environments: Implement passwordless access to domain
controllers, remote desktops, and virtual machines.
Legacy Technology: Provide interoperability with legacy/internally built technologies.

Integration with AD and Entra ID: Off-the-shelf connectors enable quick and easy deployment including WSFed and WS-Trust protocols.
Authentication: Leverage any of the 11 authenticators, matching to risk or levels of identity assurance.
Ensure Authentication Resiliency: Leverage 1Kosmos as the default authenticator to cover all use cases and use the native MSFT Authenticator as a backup.

Password Reset & Account Recovery

Users can reset their password through the 1Kosmos platform for applications where passwords cannot be eliminated.

Trust on First Use (TOFU)

Eliminate the “Trust on First Use” (TOFU) gap when users transition to new systems via a passwordless experience into new devices, eliminating the previously required username and password.

Restricted Environments / Shared Workstations

Enable phishing-resistant passwordless multi-factor authentication option for Sensitive Compartmented Information Facilities (SCIF), manufacturing clean rooms, customer service desks, higher education labs, retail bank branches, healthcare providers and other restricted environments.

Explore the capabilities that make the 1Kosmos platform your best friend

See the features

WORKFORCE

CUSTOMER

CITIZEN

INDUSTRY

PRODUCTS

Architecture

Platform

INTEGRATIONS

Blog

Categories

Events & Press

Tools

Company

Digital Identity 101

Contact