Contact us
EN
DE
SystoLOCK FAQ

You ask, we answer!

Can SystoLOCK be tested?
Is parallel operation with passwords possible?
Does SystoLOCK also work with modern RDP installations?
Is SystoLOCK compatible with cloud services like Microsoft 365?
Can SystoLOCK be used for offline logins and remote workers?
Does SystoLOCK require changes to my existing Active Directory infrastructure?
Is SystoLOCK a cloud solution?
What are the requirements for operating SystoLOCK?
What types of authentication methods does SystoLOCK support?
What security features are used instead of passwords?
How is SystoLOCK different from traditional MFA solutions?
What is SystoLOCK?
Frequently Asked Questions
What is SystoLOCK and how does it work?
SystoLOCK is a passwordless multi-factor authentication (MFA) platform designed for on-premises Windows domain environments. It eliminates the need for passwords by using separate cryptographic credentials that are verified at login.
How is SystoLOCK different from traditional MFA solutions?
SystoLOCK doesn't rely on passwords. It uses a unique combination of cryptographic credentials and short-lived certificates, eliminating vulnerabilities associated with password-based systems, such as brute-force attacks and credential theft.
What security features are used instead of passwords?
SystoLOCK employs modern cryptography with one-time passwords (OTPs) and PINs for user identification. Additionally, biometric authentication is possible when paired with smartphones. Internally, short-lived digital certificates are issued and used for each login process.
What types of authentication methods does SystoLOCK support?
SystoLOCK supports various authentication methods, including:

  • SystoLOCK Companion mobile app
  • Other OTP apps
  • RFC-compliant key fobs
  • NFC cards
  • FIDO keys
What are the requirements for operating SystoLOCK?
SystoLOCK works closely with Active Directory. The only requirement is that a certificate server (AD CS) must be present in the network.
Is SystoLOCK a cloud solution?
No, SystoLOCK operates entirely on-premises and does not require a cloud connection, such as Azure or similar services.
Does SystoLOCK require changes to my existing Active Directory infrastructure?
No, SystoLOCK integrates seamlessly with your existing Active Directory infrastructure without requiring schema modifications. It leverages Windows' native PKI functionality, simplifying deployment and management.
Can SystoLOCK be used for offline logins and remote workers?
Yes, SystoLOCK supports offline logins and remote workers through a secure mechanism involving cached credentials and smartphone-based authentication. When offline, the user's computer communicates with their smartphone via code scanning or Bluetooth and acts as a bridge to the SystoLOCK server.
Is SystoLOCK compatible with cloud services like Microsoft 365?
Yes, SystoLOCK can be integrated with most cloud services, including Microsoft 365, Google Workspace, and more via SAML/OAuth bridges, enabling passwordless logins beyond your perimeter.
Does SystoLOCK also work with modern RDP installations?
SystoLOCK is compatible with all RDP variants, including remote apps and publishing via an RDP gateway.
Is parallel operation with passwords possible?
Yes, administrators can define rules for selectively disabling passwords, allowing a mix of password-based and passwordless authentication.
Can SystoLOCK be tested?
Yes, you can test SystoLOCK in your company for 30 days and then uninstall it without leaving any trace.

Still have questions? Fill in the form below and we will be right with you!

Get in touch