How to install XFA
This demo shows the XFA installation flow for end users. It explains how a user downloads the native app, connects the device to an organization, and reaches the point where XFA can report device posture and guide any required fixes.
AWS IAM Identity Center
This demo shows how XFA can protect AWS IAM Identity Center when Google Workspace is the identity provider. The flow routes sign-in through XFA, verifies device security against the configured policy, and then allows access to AWS only when the device passes.
Dropbox with Azure AD
This demo shows how XFA can protect Dropbox when Microsoft Entra ID is the identity provider. The sign-in flow routes through XFA, checks the device against your configured policy, and then returns the user to Dropbox when access is allowed.
Microsoft integration
This demo shows how XFA works with Microsoft Entra ID during authentication. XFA acts as an external device-security factor, verifies the user's device posture after identity authentication, and then allows the sign-in flow to continue when the policy decision permits it.
Github Enterprise
This demo shows how XFA can protect GitHub Enterprise when Google Workspace is the identity provider. The SAML flow sends authentication through XFA, verifies device security against your policy, and then grants GitHub access when the device decision allows it.
Okta Integration (Factor-only)
This demo shows XFA configured with Okta as a factor-only integration. Okta handles identity authentication, then XFA verifies the device against your configured policy before the login continues, adding device posture to the sign-in decision without managing the device.
OneLogin integration
This demo shows XFA integrated with OneLogin during authentication. OneLogin verifies the user's identity, then XFA checks the device against your configured policy before the sign-in flow continues to the protected application or service. Use the flow as a reference before configuring the same pattern in your own environment.