Pointsharp Access Management 9.0 brings significant benefits for you and your organization. It further simplifies unifying all logins into a single solution, lets you merge your PKI and passkey efforts, and more. To make it easier for you to find all the goodies in this substantial solution update, we have segmented all the new features below. For the detailed release notes, read our product documentation here.

 

 > Use passkeys for Windows login

 > Certificate management for YubiKeys

 > Support for non-personal accounts

 > Passwordless login without a user name

 > Pointsharp Login App for high-security authentication 

Use passkeys for Windows login

Secure your entire login environment with the same high level of security. We are now introducing passkey login to Windows with full support for on-premises accounts.

This enables your organization to replace Windows password logins with a FIDO2 passkey on a security key, significantly improving security and further reducing the need for users to remember passwords.

This feature works without moving your credentials to Microsoft Entra, allowing you to maintain full control over your user data and credentials.  

This feature also simplifies onboarding by working together with the already existing "enroll on behalf" feature. Together, these two provide a seamless user experience in which a new employee receives a computer and a security key, with secure login, on day one. 

fido-passkey-bluegrad-right

Certificate management for security keys

Is your organization using certificates for user authentication, using a combination of certificates and passkeys, or considering a migration from certificates to passkeys? Pointsharp Access Management 9.0 is the solution for you.

Building on our extensive PKI expertise, we have added full certificate management for security keys to our Access Management solution. Write, renew, and revoke certificates in the same place you manage your passkeys.

That means you can manage both passkeys and certificates on a security key from a single solution. It also means users can manage their certificates and passkeys through the self-service portal.

Initially, we are rolling out support for this feature on YubiKeys, with other brands to follow. 

Support for non-personal accounts

An update to our Identity Provider (IdP) called Functional Accounts now allows users to log in as themselves or as a non-personal account.

This feature allows a user to sign in as “support”, “webmaster”, or a similar role, with access rights tailored to that role. These accounts could also be shared among several users working in that role.

This greatly simplifies daily work by allowing a team to sign in to a single “support agent” account or similar. It also improves security by eliminating the need to share service passwords among users. 

ilm-solution-page-main-image-bluegrad-right

Passwordless login without a username

Make passwordless authentication even easier by removing the username from the equation.

With the new Discoverable Credentials feature, usernames can be included in users' FIDO credentials.  

This enables you to create an environment where the user only needs to present their valid passkey to log in, with no password to remember and not even a username. 

Pointsharp Login App for high-security authentication

The Pointsharp Login App has been updated with even higher security. It now supports device-bound credentials through the built-in security chips on modern devices, such as the TEE and Secure Enclave.

With this feature, credentials are generated and stored in a device’s security chip, making them impossible to clone or extract. By using biometrics to unlock our login app, organizations can know with a very high degree of certainty that the correct user is authenticating.  

This feature makes the Pointsharp Login App one of the most secure options for mobile authentication. 

login-app-purplegrad-right