Note : The information contained on this page does not create a joint venture, partnership, agency or other form of association, or an express or implied license grant by either party to the other under any patent, trademark, copyright, trade secret or other intellectual property right.
Secure your Magento Store from password thefts using multi factor authentication methods with 15+ authentication types provided by miniOrange. Our multi factor authentication methods prevent unauthorized users from accessing information and resources having password alone as authentication factor. Enabling second factor authentication for Magento protects you against password thefts.
miniOrange prevents frauds with its dynamic risk engine in conjunction with enterprise specific security policy. We support a combination of the Device Id, Location and Time of access as multi-factor authentication that can detect and block fraud in real-time, without any interaction with the user.
Single Sign On
miniOrange Single Sign On (SSO) Solution provides easy and seamless access to all enterprise resources with one set of credentials. miniOrange provides Single Sign On (SSO) to any type of devices or applications whether they are in the cloud or on-premise.
Why should you pick our Magento plugin over other plugins that are available?
The most extensive range of 2 factor authentication methods
A single sign on service for 3000+ apps (whether they are standards based or not), besides Magento, like Google apps, Salesforce etc.
A fraud prevention service that lets you define trusted devices, location, time of access and other parameters that are extensive
All the above bundled together and available instantly to you as a cloud service
REST APIs that can be called from anywhere anytime
Secure login APIs using standards such as SAML and OpenID Connect
APIs for Single Sign on, 2 Factor Authentication and Fraud Prevention for Any App
Plugin based login for non standard apps
Admin dashboard to manage your account
Self service dashboard for letting end users manage their profiles
Customization for look and feel and functionality
miniOrange supports both SAML based Single Sign On into Magento as well as OpenID connect based Single Sign On. This guide explains SAML based Single Sign On into Magento.
In SAML SSO, miniOrange supports both IdP (Identity Provider) and SP (Service Provider) initiated Single Sign On (SSO) for Magento.
IdP Initiated Single Sign On (SSO)
In IdP Initiated Login, SAML request is initiated from miniOrange IdP.
Enduser first authenticates through miniOrange Idp by login in to miniOrange Self Service Console.
On landing page, there is a Magento icon, when the enduser clicks on the icon he will be redirected to his Magento account – there is no need to login again.
SP Initiated Single Sign On (SSO)
In SP Initiated Login, SAML request is initiated from Magento.
An enduser can login to Magento Account by clicking on SAML link provided on the Magento login screen.
After clicking on SAML link, he will be redirected to miniOrange Self Service Console.
Here he can enter the login credentials and login to his Magento Account.
Using Two Factor Authentication for Magento
The most practical way to strengthen authentication is to require a second factor after the username/password stage. Since a password is something that a user knows, ensuring that the user also has something or using biometrics thwarts attackers that steal or gain access to passwords.
Traditional two-factor authentication solutions use hardware tokens (or "fobs") that users carry on their keychains. These tokens generate one-time passwords for the second stage of the login process. However, hardware tokens can cost up to $40 each. It takes time and effort to distribute them, track who has which one, and replace them when they break. They're easy to lose, hard to use, and users consistently report high levels of frustration with token-based systems.
Your choice of second factor
miniOrange authentication service has 15+ authentication methods.
You can choose from any of the above authentication methods to augment your password based authentication. miniOrange authentication service works with all phone types, from landlines to smart-phone platforms. In the simplest case, users just answer a phone call and press a button to authenticate. miniOrange authentication service works internationally, and has customers authenticating from many countries around the world.