# Best Multi-Factor Authentication (MFA) Software - Page 3 *By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)* Multi-factor authentication (MFA) software secures user accounts by requiring identity verification through two or more factors before granting access to systems, applications, or sensitive information, including one-time passcodes, software or hardware tokens, mobile push notifications, biometrics, and contextual or risk-based factors. ### Core Capabilities of MFA Software To qualify for inclusion in the Multi-Factor Authentication (MFA) category, a product must: - Utilize a secondary authentication method such as OTPs, mobile push, software token, hardware token, biometric factors, or similar - Prompt authentication from a user - Allow for triggered MFA for new users and devices ### Common Use Cases for MFA Software Businesses and individuals use MFA software to strengthen access security and prevent unauthorized entry to accounts and systems. Common use cases include: - Protecting enterprise applications and privileged accounts from unauthorized access and internal data loss - Securing employee logins across cloud and on-premise systems with layered authentication - Enabling individuals to improve security on personal devices and online accounts ### How MFA Software Differs from Other Tools [Risk-based authentication software](https://www.g2.com/categories/risk-based-authentication-rba) is a form of MFA that factors in geolocation, IP address reputation, device posture, and time since last authentication to assess risk dynamically. [Passwordless authentication software](https://www.g2.com/categories/passwordless-authentication) is another MFA variant that eliminates passwords entirely, relying on alternative factors only. MFA software can also be sold as part of compound identity solutions such as [identity and access management (IAM)](https://www.g2.com/categories/identity-and-access-management-iam) or [customer identity and access management (CIAM)](https://www.g2.com/categories/customer-identity-and-access-management-ciam) platforms. ### Insights from G2 on MFA Software Based on category trends on G2, ease of setup and broad authentication method support as top strengths. These platforms deliver reductions in account compromise incidents and improved compliance posture as primary outcomes of MFA adoption. ## How Many Multi-Factor Authentication (MFA) Software Products Does G2 Track? **Total Products under this Category:** 267 ### Category Stats (May 2026) - **Average Rating**: 4.45/5 - **New Reviews This Quarter**: 186 - **Buyer Segments**: Small-Business 43% │ Mid-Market 31% │ Enterprise 26% - **Top Trending Product**: FastPass IVM (+0.056) *Last updated: May 18, 2026* ## How Does G2 Rank Multi-Factor Authentication (MFA) Software Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 13,100+ Authentic Reviews - 267+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. ## Which Multi-Factor Authentication (MFA) Software Is Best for Your Use Case? - **Leader:** [Google Authenticator](https://www.g2.com/products/google-authenticator/reviews) - **Highest Performer:** [MSG91](https://www.g2.com/products/msg91/reviews) - **Easiest to Use:** [Google Authenticator](https://www.g2.com/products/google-authenticator/reviews) - **Top Trending:** [FusionAuth](https://www.g2.com/products/fusionauth/reviews) - **Best Free Software:** [LastPass](https://www.g2.com/products/lastpass/reviews) --- **Sponsored** ### CoreView CoreView is the leading SaaS platform for Microsoft 365 Tenant Resilience. Trusted by enterprises worldwide, CoreView secures the configuration, identity, and access layers of Microsoft 365—hardening tenants against attack, reducing privilege and blast radius, detecting configuration tampering, and restoring security posture after incidents. By protecting Microsoft 365 & Entra at the tenant level, CoreView ensures organisations can prevent compromise, withstand intrusion, and recover with confidence from cyber threats and operational disruption. Use Cases: 1. Tenant Resilience for Microsoft 365 2. Complex Microsoft 365 tenant management 3. Enforce governance and lifecycle management for Microsoft 365 [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=1083&secure%5Bdisplayable_resource_id%5D=1951&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=neighbor_category&secure%5Bplacement_resource_ids%5D%5B%5D=255&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=40320&secure%5Bresource_id%5D=1083&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fmulti-factor-authentication-mfa%2Fmid-market%3Fpage%3D2&secure%5Btoken%5D=52961c9c54aaba3d09940ec38a145c5bce10b4bafd9c1032c85577e7018774fa&secure%5Burl%5D=https%3A%2F%2Fhubs.ly%2FQ04g6Cs60&secure%5Burl_type%5D=custom_url) --- ## What Are the Top-Rated Multi-Factor Authentication (MFA) Software Products in 2026? ### 1. [Imprivata Enterprise Access Management](https://www.g2.com/products/imprivata-enterprise-access-management/reviews) Simple, secure, No Click Access(tm) for workstations, applications, and critical workflows Imprivata Enterprise Access Management (EAM) enables digital access for clinicians with the tap of a badge, delivers single sign-on to apps, and enhances security and flexibility with multifactor authentication options. **Average Rating:** 4.6/5.0 **Total Reviews:** 21 **How Do G2 Users Rate Imprivata Enterprise Access Management?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.0/10) **Who Is the Company Behind Imprivata Enterprise Access Management?** - **Seller:** [Imprivata](https://www.g2.com/sellers/imprivata) - **Year Founded:** 2004 - **HQ Location:** Waltham, MA - **Twitter:** @Imprivata (10,072 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/18976/ (1,255 employees on LinkedIn®) - **Phone:** (781) 674-2700 **Who Uses This Product?** - **Top Industries:** Hospital & Health Care - **Company Size:** 61% Enterprise, 39% Mid-Market #### What Are Imprivata Enterprise Access Management's Pros and Cons? **Pros:** - Biometric Authentication (1 reviews) - Ease of Use (1 reviews) - Easy Setup (1 reviews) **Cons:** - Admin Limitations (1 reviews) - Authentication Issues (1 reviews) - Complex Setup (1 reviews) - Verification Issues (1 reviews) ### 2. [Stytch](https://www.g2.com/products/stytch/reviews) Stytch is the most powerful identity platform built for developers. With advanced features like device fingerprinting and account takeover-resistant authentication, Stytch provides the infrastructure to make your company’s identity and access management secure, reliable, and scalable. Stytch offers CIAM solutions for B2C and B2B, including breach-resistant passwords, passwordless auth flows, MFA, SSO with SAML and OIDC, and fraud and risk protection. **Average Rating:** 4.8/5.0 **Total Reviews:** 37 **How Do G2 Users Rate Stytch?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 8.9/10 (Category avg: 8.9/10) - **Easy Setup:** 9.5/10 (Category avg: 9.0/10) - **Backup:** 8.7/10 (Category avg: 8.8/10) **Who Is the Company Behind Stytch?** - **Seller:** [Stytch](https://www.g2.com/sellers/stytch) - **Year Founded:** 2020 - **HQ Location:** San Francisco, CA - **Twitter:** @stytchauth (3,187 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/stytch/about (39 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software - **Company Size:** 81% Small-Business, 16% Mid-Market ### 3. [Veridium](https://www.g2.com/products/veridium/reviews) VeridiumID is a comprehensive, software-only platform designed to provide secure, passwordless authentication by leveraging biometric data. It enables organizations to eliminate traditional passwords, tokens, and PINs, offering a seamless and robust multi-factor authentication (MFA) experience. By integrating various biometric modalities, VeridiumID ensures that only authorized individuals can access sensitive systems and information, enhancing both security and user convenience. Key Features and Functionality: - Biometric Authentication: Supports multiple biometric methods, including fingerprint recognition, facial recognition, and Veridium's proprietary 4 Fingers TouchlessID, allowing organizations to choose the most suitable option for their needs. - Multi-Factor Authentication (MFA): Combines biometric data with device possession to create a strong, two-factor authentication process without the need for passwords. - Integration Capabilities: Easily integrates with existing identity providers, single sign-on (SSO) solutions, and various applications, including Microsoft Active Directory, Citrix environments, and any app supporting SAML. - AI-Driven Threat Protection: Utilizes artificial intelligence to continuously monitor and analyze user behavior, detecting anomalies and potential security threats in real-time. - User Device Integrity: Ensures the security of the devices used for authentication by assessing their integrity and trustworthiness. - No-Code Orchestration: Offers a user-friendly interface for managing authentication flows, policy configurations, and risk levels without the need for extensive coding. Primary Value and Problem Solved: VeridiumID addresses the critical security challenge of verifying user identities accurately and securely. By eliminating reliance on passwords—which are susceptible to phishing, theft, and misuse—the platform significantly reduces the risk of unauthorized access and data breaches. Its biometric-based, passwordless authentication enhances user experience by simplifying the login process, while its AI-driven threat protection and continuous authentication capabilities provide organizations with a robust defense against evolving cyber threats. This ensures compliance with regulatory requirements and strengthens overall security posture. **Average Rating:** 4.5/5.0 **Total Reviews:** 19 **How Do G2 Users Rate Veridium?** - **Has the product been a good partner in doing business?:** 5.8/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.4/10 (Category avg: 8.9/10) - **Easy Setup:** 9.8/10 (Category avg: 9.0/10) - **Backup:** 9.3/10 (Category avg: 8.8/10) **Who Is the Company Behind Veridium?** - **Seller:** [Veridium](https://www.g2.com/sellers/veridium) - **Year Founded:** 2016 - **HQ Location:** New York, New York - **Twitter:** @veridiumid (2,039 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/12897366 (47 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 45% Enterprise, 40% Small-Business #### What Are Veridium's Pros and Cons? **Pros:** - Automation (1 reviews) - Product Innovation (1 reviews) - Reliability (1 reviews) - Security (1 reviews) - Time-Saving (1 reviews) **Cons:** - Expensive (1 reviews) ### 4. [OptimalCloud](https://www.g2.com/products/optimalcloud/reviews) The OptimalCloud from Optimal IdM is a scalable and affordable Identity and Access Management (IAM) solution built for the security and usability needs of small, mid-sized and enterprise organizations. The OptimalCloud platform can be deployed in workforce and consumer scenarios and each feature-rich pricing tier comes with multi-factor authentication (MFA), because proper security shouldn't cost extra. The OptimalCloud is integrated with more than eleven thousand applications, simplifying set up and configuration and also has 24 x 7 x 365 support with a guaranteed uptime of 99.99%. The OptimalCloud IAM platform can solve these specific use cases: - Managing Risk with Increased Security - Increasing User Productivity - Manage Administrative Costs - Managing Security Infrastructure Costs Optimal IdM is a global provider of innovative and affordable identity access management solutions. Optimal IdM partners with enterprises and small to mid-sized businesses to provide comprehensive and affordable IAM solutions that meet their specific security, usability, and scalability needs. Optimal IdM also offers its solutions as a managed service offering. Customers include Fortune 1000 companies from every industry as well as federal, state and local government agencies. Founded in 2005, Optimal IdM is privately held and has been profitable in every quarter since inception. Optimal IdM has been named to the Gartner Magic Quadrant for Access Management, received the Best Product in Identity & Access Management award from Cyber Defense Magazine, the CODiE Award for Best Identity & Access Security Solution and been placed in PCMag’s Best IAM Solutions list. Visit www.optimalidm.com for more information. **Average Rating:** 4.6/5.0 **Total Reviews:** 23 **How Do G2 Users Rate OptimalCloud?** - **Has the product been a good partner in doing business?:** 8.0/10 (Category avg: 9.0/10) - **Easy Setup:** 8.3/10 (Category avg: 9.0/10) **Who Is the Company Behind OptimalCloud?** - **Seller:** [Optimal IdM](https://www.g2.com/sellers/optimal-idm) - **Year Founded:** 2005 - **HQ Location:** Lutz, FL - **Twitter:** @Optimal_IdM (457 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/optimal-idm (10 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Consumer Goods - **Company Size:** 48% Mid-Market, 39% Small-Business ### 5. [Ory](https://www.g2.com/products/ory/reviews) Ory offers a suite of cloud-native, open-source identity and access management solutions, including: Ory Kratos for configurable user management with features like MFA and social login; Ory Hydra for OAuth 2.0 and OpenID Connect authorization; Ory Polis for organization management and enterprise SSO; Ory Keto for a granular authorization system based on Google Zanzibar; and Ory Oathkeeper, an identity and access proxy that enforces a Zero Trust security model. Deploy Your Way \* Ory Network - SaaS, instant on global identity system \* Ory Enterprise License - On-prem self-hosted option (same code as our SaaS offering) with enterprise support \* Open Source - Try Ory for your specific use cases (community supported) **Average Rating:** 4.5/5.0 **Total Reviews:** 48 **How Do G2 Users Rate Ory?** - **Has the product been a good partner in doing business?:** 9.0/10 (Category avg: 9.0/10) - **Easy Setup:** 10.0/10 (Category avg: 9.0/10) **Who Is the Company Behind Ory?** - **Seller:** [Ory](https://www.g2.com/sellers/ory) - **Company Website:** https://www.ory.com/ - **Year Founded:** 2019 - **HQ Location:** Scottsdale, US - **LinkedIn® Page:** https://www.linkedin.com/company/ory-corp (44 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 54% Small-Business, 40% Mid-Market #### What Are Ory's Pros and Cons? **Pros:** - Ease of Use (19 reviews) - Customizability (14 reviews) - Solutions (11 reviews) - Customer Support (10 reviews) - Reliability (10 reviews) **Cons:** - Poor Documentation (10 reviews) - Outdated Documentation (9 reviews) - Lack of Information (8 reviews) - Missing Features (6 reviews) - Complex Usability (4 reviews) ### 6. [LoginID Authentication Platform](https://www.g2.com/products/loginid-authentication-platform/reviews) With only a few lines of code, LoginID enables websites and apps to provide FIDO/FIDO2 certified strong customer authentication. Our open SaaS product is both easy to integrate and free to try. LoginID’s multi-factor authentication platform utilizes the existing biometrics on the user's device to create a private key, public key pair. There is no app for the user to download and the private key is stored securely on the end user's device, never leaving. We also offer a Transaction Confirmation with Digital Signature service which provides online merchants with a payment authentication tool. A transaction can be cryptographically signed providing proof of the user’s confirmation of that specific transaction. Additionally, via our partner AuthID, LoginID offers online identity verification and eKYC services. LoginID is aligned with PSD2, GDPR, CCPA, and HIPPA. We offer easy to integrate SDKs and APIs for Web, iOS, Android, React Native, Node.js, Python, and Java as well as a plug for Wordpress with Big Commerce and Woo Commerce Plugins coming soon. **Average Rating:** 4.4/5.0 **Total Reviews:** 29 **How Do G2 Users Rate LoginID Authentication Platform?** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.4/10 (Category avg: 8.9/10) - **Easy Setup:** 9.4/10 (Category avg: 9.0/10) - **Backup:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind LoginID Authentication Platform?** - **Seller:** [LoginID](https://www.g2.com/sellers/loginid) - **Year Founded:** 2019 - **HQ Location:** San Mateo, US - **Twitter:** @loginid_io (243 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/40786559 (37 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software - **Company Size:** 41% Mid-Market, 38% Enterprise ### 7. [CyLock](https://www.g2.com/products/cylock/reviews) Cybernexa, a global leader in information security, pioneers cutting-edge solutions such as CyLock MFA, SSO, SSPR, and PKI. Committed to innovation, our robust products address the dynamic security needs of today's mobile-centric environment. Offering seamless integration, CyLock MFA ensures multi-factor authentication, while CyLock SSO simplifies access to multiple systems. Manage Active Directory securely with CyLock SSPR, and fortify data integrity with CyLock PKI's encryption. Beyond products, our dedicated team delivers comprehensive cybersecurity compliance services, ensuring your organization stays ahead of threats. Choose Cybernexa for unparalleled security innovation, global reach, and comprehensive services tailored to diverse sectors. **Average Rating:** 5.0/5.0 **Total Reviews:** 19 **Who Is the Company Behind CyLock?** - **Seller:** [Cybernexa](https://www.g2.com/sellers/cybernexa) - **Year Founded:** 2018 - **HQ Location:** Chennai, Tamil Nadu - **Twitter:** @cybernexa (3 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cybernexa (29 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Logistics and Supply Chain - **Company Size:** 100% Mid-Market ### 8. [Authenticator Plus](https://www.g2.com/products/authenticator-plus/reviews) Authenticator Plus is a highly rated two factor authentication app to protect multiple accounts. **Average Rating:** 4.7/5.0 **Total Reviews:** 9 **How Do G2 Users Rate Authenticator Plus?** - **Has the product been a good partner in doing business?:** 8.3/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.6/10 (Category avg: 8.9/10) - **Easy Setup:** 9.3/10 (Category avg: 9.0/10) - **Backup:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind Authenticator Plus?** - **Seller:** [Mufri](https://www.g2.com/sellers/mufri) - **HQ Location:** N/A - **Twitter:** @mufriapps (12 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/No-Linkedin-Presence-Added-Intentionally-By-DataOps (1 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 33% Mid-Market, 33% Enterprise #### What Are Authenticator Plus's Pros and Cons? **Pros:** - 2FA Security (1 reviews) - Cross-platform (1 reviews) - Customer Support (1 reviews) - Ease of Use (1 reviews) - Easy Access (1 reviews) **Cons:** - Complexity (1 reviews) - Integration Issues (1 reviews) - Missing Features (1 reviews) ### 9. [HomeID](https://www.g2.com/products/homeid/reviews) homebase offers an AI-enabled, GDPR compliant, random based, dynamic biometric authentication SaaS solution. It is based on face recognition protecting workstations' physical access while e.g. working remotely. Anonymous identification process based on vectors forming a biometric identity without storing photos. Ensuring data security and supervisory duty in uncontrolled workspaces. **Average Rating:** 4.5/5.0 **Total Reviews:** 14 **How Do G2 Users Rate HomeID?** - **Multi-Device Sync:** 9.2/10 (Category avg: 8.9/10) - **Easy Setup:** 9.2/10 (Category avg: 9.0/10) - **Backup:** 9.2/10 (Category avg: 8.8/10) **Who Is the Company Behind HomeID?** - **Seller:** [homebase solutions](https://www.g2.com/sellers/homebase-solutions) - **Year Founded:** 2020 - **HQ Location:** Munich, DE - **LinkedIn® Page:** https://www.linkedin.com/company/75504487 (1 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 57% Small-Business, 36% Mid-Market ### 10. [PracticeProtect](https://www.g2.com/products/practiceprotect/reviews) Practice Protect is The #1 cyber security and password management platform for accountants worldwide. Take control over client logins & sensitive data in the cloud with password protection, login security, email protection, & more. **Average Rating:** 4.9/5.0 **Total Reviews:** 14 **How Do G2 Users Rate PracticeProtect?** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 8.3/10 (Category avg: 8.9/10) - **Easy Setup:** 5.0/10 (Category avg: 9.0/10) - **Backup:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind PracticeProtect?** - **Seller:** [PracticeProtect](https://www.g2.com/sellers/practiceprotect) - **HQ Location:** Denver, US - **Twitter:** @PracProtect (627 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/18065960 (54 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Accounting - **Company Size:** 86% Small-Business #### What Are PracticeProtect's Pros and Cons? **Pros:** - Customizability (1 reviews) - Customization (1 reviews) - Customization Options (1 reviews) - Data Security (1 reviews) - Ease of Use (1 reviews) ### 11. [Rublon](https://www.g2.com/products/rublon/reviews) Rublon enables your workforce to securely access your organization's networks, servers and applications. Protect your data via easy-to-use multi-factor authentication and comply with data protection regulations like GDPR. Deploy Rublon organization-wide, enabling MFA for all your cloud apps, VPNs, servers, workstations, internal as well as on-premise apps. **Average Rating:** 4.4/5.0 **Total Reviews:** 9 **How Do G2 Users Rate Rublon?** - **Has the product been a good partner in doing business?:** 8.6/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.2/10 (Category avg: 8.9/10) - **Easy Setup:** 9.8/10 (Category avg: 9.0/10) - **Backup:** 7.5/10 (Category avg: 8.8/10) **Who Is the Company Behind Rublon?** - **Seller:** [Rublon](https://www.g2.com/sellers/rublon) - **Year Founded:** 2011 - **HQ Location:** Zielona Gora, Poland - **Twitter:** @rublon (157 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/rublon/ (17 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 78% Small-Business, 22% Mid-Market #### What Are Rublon's Pros and Cons? **Pros:** - Customer Support (2 reviews) - Easy Setup (2 reviews) - Biometric Authentication (1 reviews) - Ease of Use (1 reviews) **Cons:** - Authentication Issues (1 reviews) - Expensive (1 reviews) ### 12. [SAP Customer Identity and Access Management](https://www.g2.com/products/sap-customer-identity-and-access-management/reviews) SAP CIAM for B2C is about creating relationships built on trust, security, and compliance. For the consumer, they receive an exceptional user experience, from frictionless authentication, engagement, and personalisation across every touchpoint, channel, and brand. For your business, leverage the unified customer identity to be used across your business, both front office and back office. Increase profitability and growth, at scale. Bonus: Our Enterprise Consent and Preference Management Solution is now part of CIAM B2C Customer Data Solutions: Customer Data Platform, Customer Identity and Access Management (CIAM) for B2C\*, Customer Identity and Access Management (CIAM) for B2B\*, \*Enterprise Consent and Access Management (ECPM) is now part of CIAM **Average Rating:** 4.1/5.0 **Total Reviews:** 29 **How Do G2 Users Rate SAP Customer Identity and Access Management?** - **Has the product been a good partner in doing business?:** 8.0/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.0/10 (Category avg: 8.9/10) - **Easy Setup:** 7.9/10 (Category avg: 9.0/10) - **Backup:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind SAP Customer Identity and Access Management?** - **Seller:** [SAP](https://www.g2.com/sellers/sap) - **Year Founded:** 1972 - **HQ Location:** Walldorf - **Twitter:** @SAP (297,211 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/sap/ (141,341 employees on LinkedIn®) - **Ownership:** NYSE:SAP **Who Uses This Product?** - **Top Industries:** Information Technology and Services - **Company Size:** 47% Enterprise, 37% Mid-Market #### What Are SAP Customer Identity and Access Management's Pros and Cons? **Pros:** - Customer Support (2 reviews) - Ease of Use (2 reviews) - Helpful (2 reviews) - Learning (2 reviews) - Analytics (1 reviews) **Cons:** - Complexity (2 reviews) - Complexity Issues (1 reviews) - Complex Setup (1 reviews) - Expensive (1 reviews) - Integration Issues (1 reviews) ### 13. [Accops HyID](https://www.g2.com/products/accops-hyid/reviews) HyID enables strong multi-factor authentication based on One-Time-Password, Bio-metrics parameters validations, Device Hardware ID & PKI. HyID protects the corporate resources from unchecked access by privileged users and provides detailed audit logs about who accessed what, from where and what time. The system can generate alerts based when an access by a user invalidates the set risk thresholds, enabling organizations to detect and prevent identity thefts and privilege rights misuse. **Average Rating:** 4.5/5.0 **Total Reviews:** 10 **How Do G2 Users Rate Accops HyID?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 8.8/10 (Category avg: 8.9/10) - **Easy Setup:** 9.6/10 (Category avg: 9.0/10) - **Backup:** 9.4/10 (Category avg: 8.8/10) **Who Is the Company Behind Accops HyID?** - **Seller:** [Accops Systems](https://www.g2.com/sellers/accops-systems) - **Year Founded:** 2012 - **HQ Location:** Pune, Maharastra - **Twitter:** @accopsinc (231 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/accopsinc/ (328 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 70% Mid-Market, 30% Enterprise ### 14. [Passage by 1Password](https://www.g2.com/products/passage-by-1password/reviews) Are you tired of passwords? So are your customers. Give them the passwordless future they deserve – without building it yourself. Passage is a modern authentication service that enables you to implement passkey sign-in flows to your app or website with just a few lines of code. Choose the approach that works best for your project: Passkey Flex -- Add passkey logins alongside your existing auth solution. Avoid the hassle of migrating systems and allow users to sign in with passkeys or their traditional username and password. Passkey Complete -- Completely replace your existing authentication flow or build from scratch with a robust passwordless authentication and user management solution. Realize the full security, business, and user experience benefits of eliminating passwords. Passage is backed by 1Password’s 17+ years of industry-leading security expertise. As FIDO board members, the team works with other leading tech companies to advance passwordless standards and best practices. **Average Rating:** 4.4/5.0 **Total Reviews:** 15 **How Do G2 Users Rate Passage by 1Password?** - **Has the product been a good partner in doing business?:** 9.0/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.4/10 (Category avg: 8.9/10) - **Easy Setup:** 9.4/10 (Category avg: 9.0/10) - **Backup:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind Passage by 1Password?** - **Seller:** [Passage](https://www.g2.com/sellers/passage) - **HQ Location:** Austin, TX - **LinkedIn® Page:** https://www.linkedin.com/company/passageidentity/ (21 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 100% Small-Business ### 15. [Symantec VIP](https://www.g2.com/products/symantec-symantec-vip/reviews) Symantec Validation and ID Protection (VIP) is a cloud-based, multi-factor authentication (MFA) service designed to secure access to sensitive data and applications across various devices and locations. By combining traditional username and password credentials with additional authentication factors, such as one-time passwords (OTPs), biometrics, or hardware tokens, VIP enhances security without compromising user productivity. Its scalable infrastructure allows organizations to implement robust authentication measures without the need for dedicated on-premises hardware. Key Features and Functionality: - Cloud-Based Infrastructure: Delivers secure, reliable, and scalable authentication services without requiring on-premises hardware. - Risk-Based Authentication: Utilizes device and behavior profiling to assess login attempts, blocking potentially risky access while maintaining a seamless experience for legitimate users. - Diverse Authentication Methods: Supports a wide range of authentication options, including hardware tokens, software-based OTPs, SMS or voice-based OTPs, biometrics, and push notifications, catering to various user preferences and security requirements. - Passwordless and Push Login Options: Offers user-friendly authentication experiences by eliminating the need for passwords through biometric verification or push notifications. - Self-Service Credential Provisioning: Enables users to register and manage their authentication credentials independently, reducing the administrative burden on IT departments. - Comprehensive Integration Support: Seamlessly integrates with popular VPNs, webmail services, single sign-on (SSO) applications, and user directories, facilitating broad compatibility across enterprise environments. Primary Value and User Benefits: Symantec VIP addresses the critical need for enhanced security in an era where sophisticated cyber threats and data breaches are prevalent. By implementing multi-factor authentication, organizations can significantly reduce the risk of unauthorized access, even if primary credentials are compromised. The service's flexibility in authentication methods ensures that security measures can be tailored to meet diverse user needs and compliance requirements. Additionally, its cloud-based nature offers scalability and reliability, allowing businesses to adapt to evolving security challenges without substantial infrastructure investments. Ultimately, Symantec VIP empowers organizations to protect sensitive information effectively while maintaining operational efficiency and user satisfaction. **Average Rating:** 4.5/5.0 **Total Reviews:** 43 **How Do G2 Users Rate Symantec VIP?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 6.7/10 (Category avg: 8.9/10) - **Easy Setup:** 7.2/10 (Category avg: 9.0/10) - **Backup:** 6.1/10 (Category avg: 8.8/10) **Who Is the Company Behind Symantec VIP?** - **Seller:** [Broadcom](https://www.g2.com/sellers/broadcom-ab3091cd-4724-46a8-ac89-219d6bc8e166) - **Year Founded:** 1991 - **HQ Location:** San Jose, CA - **Twitter:** @broadcom (63,571 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/broadcom/ (55,707 employees on LinkedIn®) - **Ownership:** NASDAQ: CA **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Hospital & Health Care - **Company Size:** 75% Enterprise, 16% Small-Business #### What Are Symantec VIP's Pros and Cons? **Pros:** - Cloud Services (2 reviews) - Ease of Use (2 reviews) - Security (2 reviews) - 2FA Security (1 reviews) - Cross-platform (1 reviews) **Cons:** - Delay Issues (1 reviews) - Limited Customization (1 reviews) - Missing Features (1 reviews) - Notification Issues (1 reviews) - Poor Interface Design (1 reviews) ### 16. [F5 BIG-IP Access Policy Manager (APM)](https://www.g2.com/products/f5-big-ip-access-policy-manager-apm/reviews) F5® BIG-IP® Access Policy Manager® (APM) is an access management proxy solution managing global access to user's network, cloud providers, applications, and application programming interfaces (APIs). F5 BIG-IP APM consolidates authentication for remote users and systems, mobile devices, distributed networks, virtual environments, and web access. BIG-IP APM also bridges modern and classic authentication and authorization protocols and methods. Applications which are unable to support modern authentication and authorization protocols, like SAML and OAuth with OIDC, BIG-IP APM converts user credentials to the appropriate authentication standard supported by the application. **Average Rating:** 4.1/5.0 **Total Reviews:** 18 **How Do G2 Users Rate F5 BIG-IP Access Policy Manager (APM)?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 6.7/10 (Category avg: 8.9/10) - **Easy Setup:** 10.0/10 (Category avg: 9.0/10) - **Backup:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind F5 BIG-IP Access Policy Manager (APM)?** - **Seller:** [F5](https://www.g2.com/sellers/f5-f6451ada-8c47-43f5-b017-58663a045bc5) - **HQ Location:** Seattle, Washington - **Twitter:** @F5Networks (1,386 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/4841/ (6,133 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 72% Enterprise, 22% Mid-Market ### 17. [FastPass IVM](https://www.g2.com/products/fastpass-ivm/reviews) FastPass IVM — Automated Workforce Identity Verification for the IT Help Desk IT help desks are the #1 target for social engineering attacks. Groups like Scattered Spider have proven that a single vishing call to a help desk agent — convincing them to reset a password or re-enroll an MFA device — is enough to bring down a Fortune 500 company. FastPass Identity Verification Manager (IVM) closes that vulnerability by removing human discretion from the verification process entirely. What FastPass IVM does FastPass IVM automates and enforces identity verification at the IT service desk. When a user calls to request a password reset, MFA reset, or account change, IVM takes control of the process — instructing the agent exactly what to verify, in what order, and scoring the result against a configurable trust threshold. The agent cannot proceed until verification is complete. Social engineering stops working when there is no human judgment to manipulate. Why it's different from generic MFA or SSPR Most identity tools verify users at login. FastPass IVM verifies users at the help desk — the moment attackers exploit. It uses dynamic and contextual data that a social engineer cannot fake: which machine the user normally logs in from, their geolocation, recent behavior patterns, combined with MFA factors from Okta, Duo, Microsoft Authenticator, RSA, and others. Static information like an employee ID or mother's maiden name — the kind of data Scattered Spider sources from LinkedIn or dark web leaks — is never sufficient on its own. Risk-based verification by user group and action Not every call carries the same risk. IVM lets security teams build different verification workflows for different user groups and request types. A standard user calling about a printer issue requires a lighter verification path than a system administrator requesting an MFA reset. This keeps help desk efficiency high while applying maximum protection where it matters most. Key capabilities Dynamic, contextual scoring engine — combines MFA, device checks, behavioral data, and corporate data sources into a configurable trust score Supports Okta, Duo, Microsoft Authenticator, Google Authenticator, RSA, TOTP, SMS, email OTP, KBA, Employee ID, asset tags, and more Certified ServiceNow integration — IVM controls the ticket workflow natively, advancing and logging every verification step automatically Connects to Active Directory, Entra ID, SAP, Oracle, IBM, LDAP, and SQL environments Full audit trail — every verification event is logged, timestamped, and written back to the ITSM ticket for compliance Available as cloud or on-premises; multi-tenant version for MSPs Proven to deliver 50% reduction in verification time versus manual processes Who it's for CISOs and IT security leaders at mid-to-large enterprises (500–100,000+ users) who need to harden the help desk against vishing, social engineering, and MFA bypass attacks. Widely deployed in healthcare, financial services, and regulated industries where help desk security is a compliance requirement. **Average Rating:** 5.0/5.0 **Total Reviews:** 8 **How Do G2 Users Rate FastPass IVM?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 10.0/10 (Category avg: 8.9/10) - **Easy Setup:** 10.0/10 (Category avg: 9.0/10) - **Backup:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind FastPass IVM?** - **Seller:** [FastPassCorp](https://www.g2.com/sellers/fastpasscorp) - **Year Founded:** 2000 - **HQ Location:** Copenhagen - **Twitter:** @FastPassCorpAS (161 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/fastpasscorp (63 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 75% Enterprise, 50% Mid-Market #### What Are FastPass IVM's Pros and Cons? **Pros:** - Security (5 reviews) - Automation (4 reviews) - Integrations (3 reviews) - Seamless Experience (3 reviews) - Ease of Use (2 reviews) **Cons:** - Authentication Issues (1 reviews) - Integration Issues (1 reviews) - Learning Curve (1 reviews) - Poor Navigation (1 reviews) - Setup Difficulties (1 reviews) ### 18. [LogMeOnce](https://www.g2.com/products/logmeonce/reviews) LogMeOnce Team Password Manager is a comprehensive solution designed to help teams efficiently manage and secure their passwords. It offers a user-friendly interface that simplifies password administration, facilitates secure sharing among team members, and ensures access from any device or location. Ideal for teams of up to 50 members, LogMeOnce enhances security protocols while promoting productivity by reducing the complexities associated with password management. Key Features and Functionality: - Simple Administration: Streamlines the management of multiple passwords, allowing IT administrators to set up best practices and enforce security policies effectively. - Auto Login & Autofill: Provides seamless access to applications with single-click authentication, enhancing user convenience and efficiency. - Secure Sharing: Enables secure credential sharing among team members without exposing actual passwords, ensuring sensitive information remains protected. - Dedicated Employee Vaults: Offers individual password vaults for each employee, maintaining a clear separation between personal and professional credentials. - Multiple Two-Factor Authentication Options: Supports various 2FA methods, including SMS, voice call, email, Google Authenticator, and more, to enhance account security. - Passwordless Login: Introduces innovative authentication methods like PhotoLogin and QR code login, eliminating the need for traditional passwords. Primary Value and User Solutions: LogMeOnce Team Password Manager addresses the critical need for secure and efficient password management within teams. By centralizing password storage and enforcing robust security measures, it mitigates the risks associated with weak or reused passwords. The platform's secure sharing capabilities foster collaboration without compromising sensitive information. Additionally, its user-friendly design and advanced features like passwordless login and multiple 2FA options enhance both security and productivity, allowing teams to focus on their core tasks without the burden of managing multiple credentials. **Average Rating:** 3.9/5.0 **Total Reviews:** 15 **How Do G2 Users Rate LogMeOnce?** - **Has the product been a good partner in doing business?:** 5.8/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 10.0/10 (Category avg: 8.9/10) - **Easy Setup:** 10.0/10 (Category avg: 9.0/10) - **Backup:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind LogMeOnce?** - **Seller:** [LogmeOnce](https://www.g2.com/sellers/logmeonce) - **Year Founded:** 2011 - **HQ Location:** McLean, VA - **Twitter:** @LogmeOnce (9,449 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2849334/ (11 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services - **Company Size:** 39% Mid-Market, 33% Enterprise #### What Are LogMeOnce's Pros and Cons? **Pros:** - Ease of Use (2 reviews) - Reliability (2 reviews) - 2FA Security (1 reviews) - Access Ease (1 reviews) - Authentication (1 reviews) **Cons:** - Autofill Issues (1 reviews) - Complexity (1 reviews) - Complex Setup (1 reviews) - Complex Usability (1 reviews) - Cost (1 reviews) ### 19. [UserLock](https://www.g2.com/products/userlock/reviews) UserLock delivers Identity & Access Management (IAM) for organizations built on Microsoft Active Directory. It protects logins to corporate networks and SaaS applications across hybrid, remote, and even offline or air-gapped environments. UserLock verifies AD identity access with multi-factor authentication (MFA), single sign-on (SSO), and context-aware access controls, making secure logins seamless for users and simple for IT teams. Unlike cloud-first IAM solutions, it strengthens security without replacing AD or requiring complex identity migrations. Administrators gain real-time visibility and control over user sessions to stop account sharing, limit concurrent logins, and respond instantly to suspicious activity. Detailed auditing and reporting help organizations meet compliance standards such as ISO 27001, HIPAA, and NIS2. **Average Rating:** 4.6/5.0 **Total Reviews:** 8 **How Do G2 Users Rate UserLock?** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 8.3/10 (Category avg: 8.9/10) - **Easy Setup:** 10.0/10 (Category avg: 9.0/10) - **Backup:** 9.2/10 (Category avg: 8.8/10) **Who Is the Company Behind UserLock?** - **Seller:** [IS Decisions](https://www.g2.com/sellers/is-decisions) - **Year Founded:** 2000 - **HQ Location:** BIDART, Aquitaine - **LinkedIn® Page:** https://www.linkedin.com/company/219860/ (42 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 63% Small-Business, 25% Mid-Market #### What Are UserLock's Pros and Cons? **Pros:** - Ease of Use (3 reviews) - Easy Setup (2 reviews) - Setup Ease (2 reviews) - 2FA Security (1 reviews) - Customer Support (1 reviews) **Cons:** - Access Issues (1 reviews) - Authentication Issues (1 reviews) - Lack of Customization (1 reviews) - Limited Features (1 reviews) - Limited OS Compatibility (1 reviews) ### 20. [Assure Security](https://www.g2.com/products/assure-security/reviews) Enabling your organization to comply with cybersecurity regulations and strengthen IBM i security by controlling access to systems and data, enforcing data privacy, monitoring for compliance, and assessing risks. **Average Rating:** 4.1/5.0 **Total Reviews:** 12 **How Do G2 Users Rate Assure Security?** - **Has the product been a good partner in doing business?:** 10.0/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 9.2/10 (Category avg: 8.9/10) - **Easy Setup:** 9.2/10 (Category avg: 9.0/10) - **Backup:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind Assure Security?** - **Seller:** [Precisely](https://www.g2.com/sellers/precisely-0b25c016-ffa5-4f51-9d9e-fcbc9f54cc55) - **HQ Location:** Burlington, Massachusetts - **Twitter:** @PreciselyData (3,970 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/64863146/ (2,962 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 50% Mid-Market, 33% Enterprise ### 21. [DoubleClue: Identity Security Platform](https://www.g2.com/products/doubleclue-identity-security-platform/reviews) Unified digital security for the "human factor": DoubleClue combines Identity- and Access Management with a hardwareless multi factor authentication and comes with an integrated password- and confidential data safe. Your digital identity is efficiently secured while productivity and user experience is increased by single sign on (SSO) and an adaptive policy concept. DoubleClue protects everything around your account including passwords and the data you´d like to exchange safely with others. Don´t be limited by smartphones or tokens and even manage your IAM locally / on premises in case you don´t want any data to be stored on external clouds. **Average Rating:** 4.5/5.0 **Total Reviews:** 10 **How Do G2 Users Rate DoubleClue: Identity Security Platform?** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 7.8/10 (Category avg: 8.9/10) - **Easy Setup:** 9.4/10 (Category avg: 9.0/10) - **Backup:** 8.9/10 (Category avg: 8.8/10) **Who Is the Company Behind DoubleClue: Identity Security Platform?** - **Seller:** [HWS Information Systems](https://www.g2.com/sellers/hws-information-systems) - **Year Founded:** 2000 - **HQ Location:** Neustadt, Bavaria - **Twitter:** @HWS_Gruppe (4 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/hws-gruppe (131 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 64% Mid-Market, 36% Small-Business #### What Are DoubleClue: Identity Security Platform's Pros and Cons? **Pros:** - Ease of Use (1 reviews) - Intuitive (1 reviews) - Security (1 reviews) - Simple (1 reviews) **Cons:** - Complexity (1 reviews) - Error Handling (1 reviews) - Inadequate Security (1 reviews) - Process Complexity (1 reviews) - Security (1 reviews) ### 22. [HelloID](https://www.g2.com/products/helloid/reviews) HelloID is a complete, cloud-based IDaaS solution that streamlines user provisioning, self-service, and single sign-on processes within your organization or educational institution. Automate the entire user lifecycle process with HelloID by connecting your HR/SIS data to all your downstream systems. Account details and usage rights are automatically kept up-to-date, which reduces human error and increases security. HelloID puts the power of IDM into your hands to meet current and future needs. **Average Rating:** 4.5/5.0 **Total Reviews:** 31 **How Do G2 Users Rate HelloID?** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.0/10) - **Easy Setup:** 8.3/10 (Category avg: 9.0/10) - **Backup:** 8.3/10 (Category avg: 8.8/10) **Who Is the Company Behind HelloID?** - **Seller:** [Tools4ever](https://www.g2.com/sellers/tools4ever) - **Year Founded:** 1999 - **HQ Location:** Lynbrook, New York - **Twitter:** @Tools4ever (329 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/124368/ (63 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Primary/Secondary Education, Education Management - **Company Size:** 59% Mid-Market, 38% Enterprise ### 23. [ManageEngine ADSelfService Plus](https://www.g2.com/products/manageengine-adselfservice-plus/reviews) ManageEngine ADSelfService Plus is an identity security solution with MFA, SSO, and SSPR capabilities. ADSelfService Plus is an identity security solution that ensures secure and seamless access to enterprise resources and establishes a Zero Trust environment. With adaptive multi-factor authentication (MFA), single sign-on (SSO), self-service password management, a password policy enhancer, remote work enablement, and workforce self-service, ADSelfService Plus provides your employees with secure, simple access to the resources they need. ADSelfService Plus helps keep identity-based threats out, fast-tracks application onboarding, improves password security, reduces help desk tickets, and empowers remote workforces. The core features of ADSelfService Plus include: Adaptive MFA Enable context-based MFA with 19 different authentication factors for endpoint and application logins. Enterprise SSO Allow users to access all enterprise applications with a single, secure authentication flow. Password management and security Simplify password management with self-service password resets and account unlocks, strong password policies, and password expiry notifications. Enterprise self-service Delegate profile updates and group subscriptions to end users and monitor these self-service actions with approval workflows. Remote work enablement Enhance remote work with cached credential updates, secure logins, and mobile password management. Powerful integrations Establish an efficient and secure IT environment through integration with SIEM, ITSM, and IAM tools. Reporting and auditing Simplify auditing with predefined, actionable reports about authentication failures, logon attempts, and blocked users. **Average Rating:** 4.4/5.0 **Total Reviews:** 18 **How Do G2 Users Rate ManageEngine ADSelfService Plus?** - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 9.0/10) - **Easy Setup:** 6.7/10 (Category avg: 9.0/10) **Who Is the Company Behind ManageEngine ADSelfService Plus?** - **Seller:** [Zoho](https://www.g2.com/sellers/zoho-b00ca9d5-bca8-41b5-a8ad-275480841704) - **Year Founded:** 1996 - **HQ Location:** Austin, TX - **Twitter:** @Zoho (137,495 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/38373/ (30,531 employees on LinkedIn®) - **Phone:** +1 (888) 900-9646 **Who Uses This Product?** - **Company Size:** 50% Enterprise, 44% Mid-Market #### What Are ManageEngine ADSelfService Plus's Pros and Cons? **Pros:** - Customer Support (1 reviews) - Daily Use (1 reviews) - Deployment Ease (1 reviews) - Ease of Implementation (1 reviews) - Ease of Use (1 reviews) **Cons:** - Missing Features (1 reviews) - Update Issues (1 reviews) ### 24. [Workspace ONE](https://www.g2.com/products/workspace-one/reviews) Workspace ONE is a digital workspace platform that simply and securely delivers and manages any app on any device by integrating access control, application management and multi-platform endpoint management. It is available as a cloud service or for on-premises deployment. **Average Rating:** 4.0/5.0 **Total Reviews:** 38 **How Do G2 Users Rate Workspace ONE?** - **Has the product been a good partner in doing business?:** 7.4/10 (Category avg: 9.0/10) - **Multi-Device Sync:** 10.0/10 (Category avg: 8.9/10) - **Easy Setup:** 10.0/10 (Category avg: 9.0/10) - **Backup:** 10.0/10 (Category avg: 8.8/10) **Who Is the Company Behind Workspace ONE?** - **Seller:** [Broadcom](https://www.g2.com/sellers/broadcom-ab3091cd-4724-46a8-ac89-219d6bc8e166) - **Year Founded:** 1991 - **HQ Location:** San Jose, CA - **Twitter:** @broadcom (63,571 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/broadcom/ (55,707 employees on LinkedIn®) - **Ownership:** NASDAQ: CA **Who Uses This Product?** - **Top Industries:** Information Technology and Services - **Company Size:** 43% Mid-Market, 35% Enterprise ### 25. [CryptoPhoto](https://www.g2.com/products/cryptophoto/reviews) CryptoPhoto is a mutual-authentication solution that is faster than passwords, two assurance levels stronger (LoA3) than 2FA, privacy-respectful, and suitable for everyday use to keep ordinary people secure. **Average Rating:** 4.2/5.0 **Total Reviews:** 5 **How Do G2 Users Rate CryptoPhoto?** - **Multi-Device Sync:** 6.7/10 (Category avg: 8.9/10) - **Easy Setup:** 5.0/10 (Category avg: 9.0/10) - **Backup:** 6.7/10 (Category avg: 8.8/10) **Who Is the Company Behind CryptoPhoto?** - **Seller:** [CryptoPhoto](https://www.g2.com/sellers/cryptophoto) - **HQ Location:** N/A - **Twitter:** @CryptoPhoto (49 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/3551749/ (4 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 83% Small-Business, 17% Mid-Market ## What Is Multi-Factor Authentication (MFA) Software? [Identity Management Software](https://www.g2.com/categories/identity-management) ## What Software Categories Are Similar to Multi-Factor Authentication (MFA) Software? - [Single Sign-On (SSO) Solutions](https://www.g2.com/categories/single-sign-on-sso) - [User Provisioning and Governance Tools](https://www.g2.com/categories/user-provisioning-and-governance-tools) - [Identity and Access Management (IAM) Software](https://www.g2.com/categories/identity-and-access-management-iam) - [Risk-Based Authentication Software](https://www.g2.com/categories/risk-based-authentication-rba) - [Customer Identity and Access Management (CIAM) Software](https://www.g2.com/categories/customer-identity-and-access-management-ciam) - [Biometric Authentication Software](https://www.g2.com/categories/biometric-authentication) - [Passwordless Authentication Software](https://www.g2.com/categories/passwordless-authentication) --- ## How Do You Choose the Right Multi-Factor Authentication (MFA) Software? ### What You Should Know About Multi-Factor Authentication (MFA) Software ### What You Should Know About Multi-Factor Authentication (MFA) Software ### What is Multi-Factor Authentication (MFA) Software? The main purpose of using multi-factor authentication (MFA) software is for increased security when users log in to accounts. Companies use this software to ensure only authorized users—such as employees, contractors, or customers have secure access to specific company accounts. This helps prevent both insider threats, such as unauthorized employees from accessing sensitive data, and external threats, like cybercriminals deploying phishing attacks for data breaches, from accessing restricted accounts.  MFA requires users to complete additional authentication steps to prove their identity prior to being granted access to applications, systems, or sensitive information. The software helps secure accounts by providing additional security using a layered, multi-step authentication approach. Generally, the first step to authenticate a user’s identity includes a standard username and password login process. After this initial login attempt, the second step might require users to enter a code provided by a software app on a mobile device, a hardware token like a key fob, or a code sent to a user via (SMS) text message, email, or phone call. Other authentication steps might include presenting a biometric like a fingerprint or a faceprint, or presenting other identifying signals like the user’s typical IP address, their device ID, or via behavioral factors verified by risk-based authentication (RBA) tools. **What Does MFA Stand For?** MFA stands for multi-factor authentication. It requires two or more different authentication factors. This software may also be referred to as two-factor authentication (2FA) or two-step verification when employing exactly two different authentication factors.  **What are the factors of authentication?** MFA software requires users to authenticate with some or all of the following five factors: **Single-factor authentication:** Single-factor authentication requires users to authenticate with something they know. The most common single-factor authentication is password-based authentication. This is considered insecure because many people use weak passwords or passwords that are easily compromised. **Two-factor authentication:** Two-factor authentication requires users to authenticate with something they have. It requires users to provide the information they have, usually, a code provided by an authenticator app on their mobile devices, SMS or text message, software token (soft token), or hardware token (hard token). The code provided can be either an HMAC-based one-time password (HOTP) which does not expire until used, or a time-based one-time password (TOTP) that expires in 30 seconds. **Three-factor authentication:** Three-factor authentication requires users to authenticate with what they are. It takes into account something unique to the user such as biometric factors. They can include fingerprint scans, finger geometry, palmprint or hand geometry scans, and facial recognition. Using biometrics for authentication is becoming increasingly common as biometric logins on mobile devices, including facial recognition software and fingerprint scanning capabilities, have gained in popularity among consumers. Other biometric authentication methods, such as ear shape recognition, voiceprints, retina scans, iris scans, DNA, odor identity, gait patterns, vein patterns, handwriting and signature analysis, and typing recognition, have not yet been widely commercialized for MFA purposes. **Four-factor authentication:** Four-factor authentication requires users to authenticate with where they are and when. It considers a user’s geographic location and the time it took for them to get there. Usually, these authentication methods do not require a user to actively authenticate this information, instead, this runs in the background when determining a specific user’s authentication risk. Four-factor authentication verifies a user’s geolocation, which points to where they currently are and their geo-velocity, which is the reasonable amount of time it takes for a person to travel to a given location. For example, if a user authenticates with an MFA software provider in Chicago and 10 minutes later attempts to authenticate from Moscow, there is a security issue. **Five-factor authentication:** Five-factor authentication requires users to authenticate with something they do. It relates to specific gestures or touch patterns that users generate. For example, using a touch-screen enabled with a relatively new OS, that supports the feature, users can create a picture password where they draw circles, straight lines, or tap an image to create a unique gesture password. #### What Types of Multi-Factor Authentication (MFA) Software Exist? There are several kinds of MFA software. In addition to standard MFA functionality, many companies are moving toward [RBA](https://www.g2.com/categories/risk-based-authentication) software, also known as intelligent MFA, which uses risk monitoring to determine when to request users for authentication. The different types of authentication methods can include: **Mobile apps:** A common way users prefer to authenticate is using MFA software’s mobile app. [**Software token**](https://www.g2.com/categories/multi-factor-authentication-mfa/f/software-token) **:** Software tokens enable users to use MFA mobile apps including wearable devices. Using software tokens is considered more secure than using OTP via SMS, since these messages can be intercepted by hackers. Software tokens can be used when offline, making it convenient for end users who may not have access to the internet. [**Push notifications**](https://www.g2.com/categories/multi-factor-authentication-mfa/f/mobile-push-multi-factor-authentication-mfa) **:** Push notifications make authentication simple for end users. A notification is sent to a user’s mobile device asking them to approve or deny the authentication request. Convenience is crucial for user adoption of MFA tools. [**Hardware token**](https://www.g2.com/categories/multi-factor-authentication-mfa/f/hardware-token-based) **:** Hardware tokens are pieces of hardware users carry with them to authenticate their identity. Examples include OTP key fobs, USB devices, and smart cards. Common issues with hardware tokens include the hardware’s expense plus the added cost of replacements when users lose them. **One-time passwords (OTP) via SMS, voice, or email:** Users who can’t use mobile apps on their phones can opt to use OTP sent to their mobile devices via SMS text message, voice call, or email. However, receiving authentication codes via SMS is considered one of the least secure ways to authenticate users. [**Risk-based authentication**](https://www.g2.com/categories/multi-factor-authentication-mfa/f/risk-based-authentication) **(RBA) software:** RBA, also known as intelligent or adaptive MFA, uses real-time information about end users to evaluate their risk and prompt them to authenticate when needed. RBA software analyzes IP addresses, devices, behaviors, and identities to set personalized authentication methods for each distinct user attempting to access the network.  **Passwordless authentication:** Passwordless authentication, also known as invisible authentication, relies on RBA factors such as location, IP address, and other user behaviors. Push notifications are considered passwordless authentication, as a user is not required to enter a code, but merely asked to accept or reject an authentication request. [**Biometrics**](https://www.g2.com/categories/multi-factor-authentication-mfa/f/biometric) **:** Biometric authentication factors, such as facial and fingerprint recognition, are gaining popularity among consumers, and therefore, MFA software providers are beginning to support them. Currently, other biometric factors, such as iris scanning, are not available in MFA tools. One issue with using biometrics for authentication is that once they are compromised, they are compromised forever. **MFA as a service:** Tying in with a company’s cloud-based directories, some MFA providers offer cloud-based MFA as a service solution. These often support multiple authentication methods including push notifications, software tokens, hardware tokens, online and offline authentication, and biometrics. **On-premises MFA:** On-premises MFA solutions run on a company’s server. Many software vendors are phasing out these kinds of MFA solutions and pushing customers to cloud-based solutions. **Offline-available MFA:** Users who need to authenticate, but do not have access to the internet, can use MFA solutions with offline support. For example, many federal employees work in controlled, secure environments and might not have access to the internet. Federal government civilian employees might use personal identity verification (PIV) cards to authenticate, while the Department of Defense employees authenticate using a common access card (CAC). For general civilians, they can authenticate offline using a mobile app with offline access to OTPs or one that uses a hardware-based U2F security key.  **Enterprise solutions:** Companies that manage MFA deployments to many users need robust solutions and will opt for software with administrator consoles, endpoint visibility, and connect with single sign-on (SSO) software. ### What are the Common Features of Multi-Factor Authentication (MFA) Software? The following are some core features within MFA software that can help users authenticate via multiple modalities. **Multiple authentication methods:** To meet diverse needs, end users may like to authenticate in different ways. These might include OTPs sent via SMS, voice, email, push notifications sent to mobile devices, biometrics like fingerprints or facial recognition, hardware tokens such as key fobs, or fast identity online (FIDO) devices. Different software offer various kinds of authentication methods. It’s important to consider what type of authentication would work best for a specific organization. **Supports access types:** Ensuring MFA software works with a company’s existing cloud applications, local and remote desktops, web, VPN, and other applications is important. **Prebuilt APIs:** Developers adding MFA software in their applications may seek a provider with a prebuilt API for ease of development. Many software providers offer branded MFA functionality to maintain the look and feel of a developer’s own applications. **Supports FIDO protocols:** FIDO is a set of protocols based on public-key encryption created by the FIDO Alliance that is more secure than OTPs. FIDO supports authentication of almost any type, including USB, near-field communication (NFC), and Bluetooth. [FIDO protocols](https://learn.g2.com/fido) are the basis of passwordless authentication. **Self-registration and self-help portals:** Positive user experience is critical for end-user adoption of MFA software. Many providers offer self-registration processes for end users, as well as self-service portals which save the deployment team’s time. **Administrator tools:** Administrators need tools to help them be most effective in deploying MFA software, as well as meeting company policies. Some MFA providers allow administrators to limit MFA to specific IP addresses or applications and specific geographical or secure locations. Many MFA tools have policy settings that restrict end users from using jailbroken devices. When employees leave or change roles, some MFA providers offer automatic deprovisioning features. Other Features of Multi-Factor Authentication Software: [Backup Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/backup), [Biometric Factor Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/biometric-factor), [Compound Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/compound), [Email Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/email), [Hardware Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/hardware), [Mobile SDK Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/mobile-sdk), [Multi-Device Sync Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/multi-device-sync), [Phone Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/phone), [Point Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/point), [Risk-based Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/risk-based), [SMS Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/sms), [Voice-Based Telephony Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/voice-based-telephony), [Web SDK Capabilities](https://www.g2.com/categories/multi-factor-authentication-mfa/f/web-sdk) ### What are the Benefits of Multi-Factor Authentication (MFA) Software? **Security:** The main purpose of MFA software is for increased security when logging in to accounts. Companies use this software to ensure that only authorized users can log on and have access to specific company accounts. This helps the company prevent both insider threats, such as unauthorized employees, and external threats, like hackers, from accessing restricted accounts. **Simplified login processes:** Another reason businesses use MFA software is to simplify login processes for their employees. Passwords can be a hassle and are not enough to secure an account anymore. Considering the number of accounts users have, many people struggle to remember their passwords and reuse weak or compromised passwords across multiple accounts. Because of password fatigue, companies need ways to secure their employees' accounts while keeping the process simple for end users. MFA can reduce, and in some instances entirely remove the need for passwords. **Improve customer experience:** Developers use MFA software to increase security while simplifying login processes for their customers by embedding MFA tools in their applications. Trust is paramount for a company's success, so encouraging customers and other end users to secure their accounts is essential. Application developers are increasingly implementing MFA in the design of their applications. **Save time for helpdesk teams:** MFA software also improves productivity for help desk teams who deploy these tools to employees. Many of these tools are easy to install and have simple interfaces, contributing to widespread adoption. Many include self-help tools that free up help desk team members' time. **Meet regulatory compliance:** Some regulatory compliance rules, such as payment processing and healthcare regulations, require that MFA software be set up on user accounts. ### Who Uses Multi-Factor Authentication (MFA) Software? Everyone--from individual users to company employees and customers--should use MFA software to protect their accounts. It is even more important to use it to secure email accounts and password vaults to reduce the risk of being hacked. There are free versions of MFA software available for individuals and light users, as well as enterprise-level software available with added functionality for corporate deployments. **Individuals:** individuals use MFA software to protect their personal accounts including email, password vaults, social media, banking, and other apps. **Administrators:** Administrators or help desk technicians deploy MFA software to their colleagues. With large deployments, many administrators seek an MFA solution that provides a robust administrator platform to help with provisioning, deprovisioning, and setting risk policies. **End users:** End users, like company employees or customers, use MFA software on a daily basis. Accessible solutions with easy usability increase the adoption of these tools, improving security. Presently, many MFA software deployments utilize mobile device applications in the process. **Developers:** Developers, engineers, and product teams use MFA software to ensure the applications they’ve built are secure for end users. While some developers might choose to build their own MFA software, many are embedding existing MFA software solutions in their apps using APIs that allow developers’ software to integrate with the MFA software. #### Software Related to Multi-Factor Authentication (MFA) Software Related solutions include: [Passwordless authentication software](https://www.g2.com/categories/passwordless-authentication) **:** Passwordless authentication is a type of MFA software that eliminates a password as an authentication type. Instead of using passwords (something the user knows), passwordless authentication relies on authenticating a user via other means, such as something a user has (like a trusted mobile device or a hardware security key) and something that they are (for example, scanning their fingerprint). [Biometric authentication software](https://www.g2.com/categories/biometric-authentication) **:** Biometric authentication software is a type of MFA software that helps improve security for networks, applications, and physical locations by requiring biometric factors as an additional access qualifier. Biometric authentication tools utilize physical characteristics including facial, fingerprint, or voice recognition, to verify a user’s identity. [Risk-based authentication software](https://www.g2.com/categories/risk-based-authentication-rba) **:** RBA software is a type of MFA software that analyzes contextual factors like the user’s IP addresses, devices, behaviors, and identities to set customized authentication methods for each individual user attempting to access the network. Non-suspicious users accessing applications from known devices, locations, and networks may be automatically signed in. Suspicious users may be required to provide step-up authentication methods, such as inputting an SMS code, biometric verification, or email confirmation actions to properly verify their identity. [Single sign-on (SSO) software](https://www.g2.com/categories/single-sign-on-sso) **:** SSO software is an authentication tool that provides users with access to multiple applications or datasets without requiring multiple logins through the use of federation. Many SSO solutions have MFA functionality native within their software. [Identity and access management (IAM) software](https://www.g2.com/categories/identity-and-access-management-iam) **:** IAM software authenticates workforce users, provides access to systems and data, tracks user activity, and provides reporting tools to ensure employees comply with company policies. MFA is one component of this software. [Customer identity and access management (CIAM) software](https://www.g2.com/categories/customer-identity-and-access-management-ciam) **:** Businesses use CIAM software to manage customer user identities and offer those customers a secure, seamless login experience for the company’s websites, applications, and other online services. MFA is one component of this software. CIAM software also allows businesses to manage customer identities, preferences, and profile information at scale. These solutions enable customers to self register for services, login and authenticate, and manage their own user profiles, including consent and other preferences. [Identity verification software](https://www.g2.com/categories/identity-verification): Businesses verify user identities to create trust online and offline, prevent identity fraud, and comply with privacy and anti-fraud regulations using identity verification software. This is different from authentication. With identity verification, companies are trying to verify who an unknown person is (1:N match). With authentication, however, a company is trying to ensure that the person logging in is indeed the known person they already know (1:1 match). ### Challenges with Multi-Factor Authentication (MFA) Software **MFA methods:** It is important to choose the best MFA methods for the workforce. For example, if the workforce cannot carry mobile phones to their job sites—such as those in manufacturing, healthcare, or government roles—businesses must consider using a hardware token. If the workforce often needs to authenticate themselves while they are not online, businesses should choose a solution that allows offline authentication.  **User adoption:** Unlike many security tools that information security professionals deploy in the background, MFA tools are used by everyday users. It is important to properly train employees and ensure they understand how to use these tools. ### Which Companies Should Buy Multi-Factor Authentication (MFA) Software? All companies that have end users accessing important company resources should authenticate their users’ identities prior to granting access. Given that usernames and passwords are easily hacked, having a second or third form of authentication is advisable.  **All companies:** Any company that wants to ensure that only verified, permissioned people--such as employees, contractors, or customers--have access to company accounts. **Regulated industries:** While all companies should secure their resources, companies operating in regulated industries may be required by industry standards or law to do so. For example, many businesses that process credit card payments are subject to the Payment Card Industry Data Security Standard (PCI DSS) compliance standards that require MFA on their accounts. Similarly, the [European Union Payment Services Directive](https://eur-lex.europa.eu/eli/dir/2015/2366/oj) requires strong customer authentication for electronic payments. Additionally, other bodies, such as the [Health Insurance Portability and Accountability Act (HIPAA)](https://www.hhs.gov/hipaa/for-professionals/security/guidance/index.html) for healthcare and the [Sarbanes-Oxley Act (SOX)](https://legcounsel.house.gov/Comps/Sarbanes-oxley%20Act%20Of%202002.pdf) for finance and accounting, require strong authentication processes. ### How to Buy Multi-Factor Authentication (MFA) Software #### Requirements Gathering (RFI/RFP) for Multi-Factor Authentication (MFA) Software As the buyer develops their list of requirements and priorities for selecting MFA software, they must keep these items in mind: **End user use cases** : Determining the company’s end-user use cases is essential. The buyer should also classify the users they are trying to authenticate--are they employees, contractors, or customers? For example, employees may be able to use authentication methods such as hardware tokens and biometrics, while customers might rely on in-app mobile pushes or OTPs sent via email, SMS, or phone.  **Authentication methods** : The buyer must determine the types of authentication methods that will and will not work for their end users. Are there limitations on the types of factors that the employees can use? For example, if employees in a manufacturing facility or healthcare unit cannot carry a mobile phone with them, authentication factors requiring a mobile device may not be suitable. **Licenses needed** : Buyers must determine how many licenses are needed for their end users and if there are different license types based on user type. **Business segment or region-specific solution** : If someone is looking for software tailored to the small businesses segment versus mid-market or enterprise segments, they have to be clear in their RFP about this. Similarly, if the buyer needs a tool that works well in a specific geographical region or language, they should include it in their RFP. **Integrations:** The buyer must determine which integrations are important to their company. **Timeline:** The company must decide how quickly they need to implement the solution. **Level of support:** Buyers should know if they require high-quality support or if they prefer implementing the solution in house. #### Compare Multi-Factor Authentication (MFA) Software Products **Create a long list** There are hundreds of MFA solutions available on the market, which can be daunting to sift through. It is best to narrow the list of potential vendors based on the features that are most important to the organization, such as the type of authentication available to end users.  Buyers can review MFA products on g2.com, where they can search by languages supported, features such as authentication type, and whether the solution is a point solution for MFA or if MFA is a part of a more comprehensive identity product. Once the buyer has narrowed down the product selection, they can save them in the “My List” on g2.com. **Create a short list** After storing the long list of potential MFA products, the list further can be further narrowed down by reading user reviews, checking the product’s ranking on the G2 Grid® report for the Multi-Factor Authentication (MFA) software category, and reading usability ratings. **Conduct demos** After researching the options, it is time to conduct demos to ask detailed questions of the vendor and ensure it meets particular business needs. Potential buyers can contact many vendors directly on g2.com to request demos by selecting the “Get a quote” button. At each demo, buyers must be sure to ask the same questions and use case scenarios to best evaluate each product.  #### Selection of Multi-Factor Authentication (MFA) Software **Choose a selection team** The software selection team should be a handful of people representing different areas of the business. Personas should include the ultimate decision maker, IT or security administrators, and end users. It is important to include at least one end user on the selection team because end-user adoption is critical to the success of this software solution. **Negotiation** When negotiating a contract, typically longer length contracts and larger license counts can improve discounting.  **Final decision** Prior to making a final decision on which tool to purchase, buyers should ask the vendor if they offer a trial period to test with a small number of users before going all in on the product. If the tool is well received by end users and administrators, businesses can feel more confident in their purchase.