We've added support in the desktop browser extension to detect installed password managers, to push the recommended practice of using a password manager to store unique passwords.
Note: The security check is not enabled by default, but can be enabled by the user (or by request of the organization).
2 new checks are now available:
We've rebranded the web experience to provide more information for users and provide clear actions for users to act upon and get their devices secure!
To scope your policies to specific (groups of) users, you can now use an email whitelist to specify email or domain for users that should be included. Useful during during your first onboarding when you want to try out XFA with a small set of people!
Note: leaving the field empty will apply the policy to all users (which is the default).
Now, XFA has a new mobile experience that rebrands the introduction, overview, and guides. Find the app in your app store and enjoy our rebranded look & feel!
XFA is now a Vanta Partner!
You can use XFA to provide device security proof automatically for your compliance needs, pushing updates regularly to Vanta.
Get started in the Vanta Dashboard under Integrations.
XFA now supports the OAuth 2.0 PKCE authentication method to integrate applications with XFA.
The integration works by replacing the redirectURL after authentication so users can verify their device security with XFA.
Available now through the XFA Dashboard!
XFA Connect can be used as a possession factor through the idp-factor functionality in Okta. This allows XFA to be seamlessly added to any application from within the Okta admin dashboard, given that it uses Okta as the identity provider.
When a user authenticates with Okta, as an additional factor after supplying a username & password, the user is redirected to XFA to verify that the device is compliant with the device security policy before authenticating the user. This assures that only devices that comply with the security policy are allowed access.
We're exited to announce that XFA Connect now supports SAMLv2, or Security Assertion Markup Language 2.0, in an ongoing effort to support as many authentication standard and protocols as possible, with the mission to make it possible to secure any application and making sure that only secure devices have access.
XFA Connect is the specialized tier of the XFA product designed to assess the security posture of devices as part of the authentication with your organization's applications.
This feature empowers you to discover all devices used in your organization and ensure that the devices interacting with your systems meet your organization's stringent security standards, wether the devices were previously known or not.
In response to the need to secure many SaaS services commonly used in an organization, XFA Connect now extends its capabilities to seamlessly and transparently support the SAMLv2, or Security Assertion Markup Language 2.0, authentication protocol for both the requesting application and the identity provider without making any change to the specific authentication request or content.
SAMLv2, or Security Assertion Markup Language 2.0, is one of the most common used standards for providing identity from an identity provider such as Google, Microsoft, Okta, for services such as GitHub, Slack, Jira, Notion, Salesforce, ... and so many more.
For detailed insights into integrating with these specific applications, please refer to our comprehensive integration guides.
Should you have any queries or require assistance, our dedicated support team stands ready to assist you.
We look forward to bringing you many more updates in the future!