MagicEndpoint – Under the Hood

Product Video Demo

SSH for Enterprise: In this video, see how to manage secure SSH access using MagicEndpoint IdP. Watch as the admin creates an SSH access group, adds a server, and configures user permissions—all through a centralized interface. With MagicEndpoint, users can securely authenticate to SSH servers using TPM-protected keys — either via the command line or through the MagicEndpoint Portal. No passwords. No tokens. Just seamless, secure access.

Single Sign On to Windows OS: Discover how MagicEndpoint integrates preboot authentication with Windows SSO, using the same MFA for both phases to enhance security while streamlining access to your device.

MagicEndpoint creates persistent connection at power on: See how MagicEndpoint establishes a secure, persistent connection, enabling continuous verification and control for a trusted, always-on security channel.

Creates “User on Device, in Real Time” key when user logins the endpoint: Discover how MagicEndpoint creates a “user on device in real-time” identity that is TPM bound to their trusted device and cryptographically protected.

No User Action SaaS login office 365: See how MagicEndpoint enhances Office 365 security with no user action authentication—going beyond traditional SSO by verifying user, device, security posture, and intent for each request.

MagicEndpoint verifies User Intent: See how MagicEndpoint verifies user intent and secures online access by leveraging a trusted channel, seamlessly handling authentication while tracking and alerting on untrusted device attempts.

Signature Counter for Enhanced Security: See how MagicEndpoint strengthens security with FIDO’s signature counter, enforcing a one-server, one-client relationship to detect anomalies and thwart advanced threats instantly.

Cisco VPN Login Non SaaS Application: See how MagicEndpoint enables No User Action authentication for Cisco VPN, seamlessly handling secure access in the background and extending support to RADIUS-based VPNs.

No User Action RDP Access: See how MagicEndpoint enables No User Action authentication for RDP, seamlessly integrating with Windows Credential Provider to provide secure, passwordless access within the session.

Real Time Event Updates and Device Signals: See how MagicEndpoint ensures real-time endpoint synchronization with event-driven updates, dynamically reporting user actions for up-to-the-second security and more accurate, trusted authentication.

Dynamic, Real Time key Identity “User on Device” no longer available when user logs off: See how MagicEndpoint enhances security by automatically deleting the “User on Device” key at logout, ensuring authentication credentials vanish when the user leaves, maintaining a continuous trust model.

No User Action on MacOS: See how MagicEndpoint extends seamless, passwordless authentication to macOS and iOS, ensuring secure, consistent access across platforms without compromising security or user experience.

MagicEndpoint also supports Unmanaged Endpoint: See how MagicEndpoint balances security for unmanaged endpoints with out-of-band authentication falling back to out-of-band authentication, similar to traditional solutions.

Step Up MFA for Sensitive Applications: See how MagicEndpoint provide Step Up MFA by combining No User Action with explicit MFA for critical apps using Salesforce as an example.

No User Action for Legacy Application with Username and Password: See how MagicEndpoint secure online access to non-federated legacy applications by securely managing credentials in the background, eliminating the need for extra logins or password managers.

Deny Access to Unsecured Endpoints: See how MagicEndpoint enforces IT security policies for secure online access as we use verifying full disk encryption policy before granting secure online access.

Preboot Login with MFA via Bluetooth: Secure endpoint access with Windows Login with MFA at PreBoot authentication using Bluetooth, network-based phone access, USB tokens, smartcards, TPM, PIN, PKI or combinations for a future-ready security experience.

Geolocation-Based Access Control in Authentication Workflows | Office 365, Windows & Devices: This video demonstrates how geolocation restrictions can be seamlessly integrated into online authentication workflows using an Identity Provider (IdP) portal.

keyboard_arrow_up