For the best web experience, please use IE11+, Chrome, Firefox, or Safari

Products

Identity Governance and Administration

Log Management

View All Products

Solutions

Achieve identity-centric cybersecurity to protect the people, applications and data that are essential to business

All Solutions

All Integrations

Behavior Driven Governance

Gain full visibility into which access rights are being used, how and by whom. Enforce the principle of least privilege and reduce vulnerabilities and licensing costs.
Enhanced Active Directory Governance

Streamline AD/Entra ID management with enhanced security, simplified integration and advanced governance that goes beyond traditional IGA connectors.
Privileged access governance

Close the gap between privileged access and standard user identities across the enterprise.
Advanced Authentication

Fortify your defenses with strong and adaptive authentication, preventing unauthorized access to your most critical systems, applications and sensitive data.
Enhance log management

Reliably collect, store and manage logs from hundreds of systems across the enterprise.
Support digital transformation

Take measured steps to ensure digital transformation initiatives stay in line with identity security best practices.
Drive operational efficiencies

Streamline process, reduce errors and minimize complexity associated with managing identities.
AI-driven security with built-in predictive insights

At One Identity, AI isn’t just an add-on: It’s built-in to deliver predictive insights right out of the box.
Unify your identity security environment with One Identity fabric

The One Identity fabric weaves together previously siloed identity tools, creating a unified and seamless identity and access management framework.

Support & Services

Partners

About

Blogs

Communities

Free Trials

Defender

Two-factor authentication made easy with Enterprise 2FA

Our Enterprise 2FA solution, Defender, enhances security by requiring two-factor authentication to gain access to your network resources. Defender uses your current identity store within Microsoft Active Directory (AD) to enable two-factor authentication. It takes advantage of AD’s inherent scalability and security to eliminate the time and expense involved with setting up and maintaining proprietary databases. Defender’s web-based administration, user self-registration and ZeroIMPACT migration capabilities ease implementation for administrators and users. Plus, Defender hardware tokens utilize their full battery life and provide software tokens that never expire.

06:02

Download Free Trial Request Pricing

Features

Active Directory-centric

Use the scalability, security and compliance of Active Directory (AD) to provide a Windows 10 two-factor authentication to any system, application or resource. You can take advantage of the corporate directory already in place, instead of creating an additional proprietary one — and save time and money. User token assignment is simply an additional attribute to the user object within AD.

Token self-registration

Enable users to request a hard or soft token based upon policy defined by administrators, and then quickly and easily assign that token to their account through a secure mechanism. Token self-registration removes the entire administrative burden and associated costs of conventional manual token assignment.

Help desk troubleshooter

Enable help desk and Defender administrators to troubleshoot, diagnose and resolve user-authentication-related problems with just a couple of mouse clicks from any browser using enterprise 2FA. View a current list of authentication attempts and routes, with associated results, possible reasons for failures and one-click resolution steps. In addition, Defender enables you to view user account details and assigned tokens, quickly test or reset the pin, provide a temporary token response, or reset or unlock the account.

Web-based administration

Provide Defender administrators, help-desk administrators and end-users options for token management, token deployment, real-time log viewing, troubleshooting and reporting using the web-based Defender Management Portal.

Token flexibility

Make use of the full battery life of hardware tokens—typically 5 to 7 years —rather than having a vendor-defined term. This enables you to replace tokens as they expire, in a business-as-usual process, instead of to all users at one time and incurring the costs associated with such a project. In addition, Defender offers software tokens that never expire. View all available tokens.

ZeroIMPACT migration

The Enterprise 2FA solution, Defender, can run in tandem with legacy systems. All user-authentication requests are directed to Defender. If the user is not yet defined within Defender, the authentication request is passed via the proxy feature to the incumbent authentication solution. This allows administrators to migrate users to Defender as their legacy tokens expire, with virtually no overhead from an administrator or end-user perspective.

Universal soft token license

The Defender two-factor authentication solution offers a wide range of software tokens for most popular and widely deployed mobile platforms. By offering a universal software token license, the administrator can easily reissue the appropriate device license when a user decides to switch mobile platforms.

Pluggable Authentication Module (PAM)

Specify that services and users defined on your Unix/Linux systems be authenticated by Defender with its Pluggable Authentication Module (PAM).

Encryption

Secure communications by associating a Data Encryption Standard (DES) with the Defender Security Server. Defender supports AES, DES or Triple DES encryption.

Specifications

Defender security server (DSS)

Processor

2 GHz or faster, x86 or x64 architecture

Memory (RAM)

2 GB or more

Hard disk space

40 GB or more

Operating system

Your computer must be running one of the following operating systems (with or without any Service Pack):

Windows Server 2019
Windows Server 2016
Windows Server 2012 R2

Windows Server 2012
Windows Server 2008 R2
Windows Server 2008 (32 and 64 bit editions)

Defender administration console

Processor

1.4 GHz or faster, x86 or x64 architecture

Memory (RAM)

512 MB or more

Hard disk space

2 GB or more

Operating system

Your computer must be running one of the following operating systems (with or without any Service Pack):

Windows Server 2019
Windows Server 2016
Windows Server 2012 R2
Windows Server 2012
Windows Server 2008 R2

Windows Server 2008 (32- and 64-bit editions)
Windows 10 (32- and 64-bit editions)
Windows 8.1 (32- and 64-bit editions)
Windows 8 (32- and 64-bit editions)
Windows 7 (32- and 64-bit editions)

Additional software

Active Directory Users and Computers (ADUC) tool
Microsoft Visual C++ 2013 Redistributable Package (installed automatically together with the Defender Administration Console)
Microsoft .NET Framework 4.7.2 (installed automatically together with the Defender Administration Console)

Defender management portal

Processor

2 GHz or faster, x86 or x64 architecture

Memory (RAM)

2 GB or more

Hard disk space

40 GB or more

Operating system

Your computer must be running one of the following operating systems (with or without any Service Pack):

Windows Server 2019
Windows Server 2016
Windows Server 2012 R2

Windows Server 2012
Windows Server 2008 R2
Windows Server 2008 (32- and 64-bit editions)

Additional software

Microsoft Internet Information Services (IIS) 10.0, 8.5, 8.0, 7.5, or 7.0, with Forms Authentication and ASP .NET role services enabled (configured automatically by the setup)
Microsoft .NET Framework 4.7.2 (installed automatically together with the Defender Management Portal)
To access the Defender Management Portal, you can use any of the following Web browsers:
- Chrome 15 or later
- Firefox 8 or later
- Internet Explorer 9 or later (Internet Explorer run in compatibility mode is not supported)
- Opera 11.1 or later
- Safari 5.1 or later

Detailed requirements

Download free trial to see the full list of system requirements.

Get started now

Download Free Trial Request Pricing

Resources

View All

Datasheet

Support and services

Product Support

Self-service tools will help you to install, configure and troubleshoot your product.

Support Offerings

Find the right level of support to accommodate the unique needs of your organization.

Behavior Driven Governance

Enhanced Active Directory Governance

Privileged access governance

Advanced Authentication

Enhance log management

Support digital transformation

Drive operational efficiencies

AI-driven security with built-in predictive insights

Unify your identity security environment with One Identity fabric

Defender

Features

Active Directory-centric

Token self-registration

Help desk troubleshooter

Web-based administration

ZeroIMPACT migration

Universal soft token license

Pluggable Authentication Module (PAM)

Encryption

Specifications

Protect all your endpoints

Get started now

Resources

Defender

Bakersfield Police Department locks down remote access with Defender

The Village of Westmont secures working environment with One Identity’s suite of IAM solutions

One Identity Customers and Partners Speak

Installing and Configuring Defender: The Quick Version

eBook: Cyber resilience in the era of identity sprawl

Executive Summary | Exploring the current state of Zero Trust – awareness, adoption, and barrier...

Global Survey Results 2021 – Executive Summary: Understanding the trend toward unified identity ...

Related Products

Defender Mainframe Edition

Support and services

Product Support

Support Offerings