← BACK TO RECIPES

Protect apps with HYPR passwordless authentication

How to orchestrate a secure Passwordless user journey to any application with Maverics.

  • No-code passwordless for any app, even those that don’t support modern AuthN
  • Quickly integrate passwordless with your existing IDPs and apps for a frictionless user journey
  • Reduce risk through phased passwordless deployments
Ingredients
PMFA
Azure AD
HYPR
Authentication
Passwordless

A truly passwordless experience made possible by decoupling HYPR from your IDPs.

The recipe diagram

A simple user journey that simply works.

The sequence diagram

How everything comes together to authenticate.

What the user sees

Users love Maverics because adding passwordless authentication eliminates the need to create and remember additional login credentials when they access their applications. Orchestration removes any scary interruption to their expected login experience, and they don’t feel the friction traditionally associated with adding new security services.

  • User navigates to the target app through their existing access workflow and enters their username
  • Maverics checks whether they are in a user population configured for Passwordless authentication
  • Maverics initiates a prompt to the user’s phone to authenticate with HYPR
  • The user completes a passwordless authentication event on their mobile device
  • Maverics collects additional user data, claims, and context
  • On successful HYPR passwordless authentication, the user is able to access target app

What the admin does

Admins love Maverics because they can quickly onboard users and protect apps with Passwordless authentication in a fraction of the time since there is no need to change apps or IDPs. Decoupling authentication from the protected resources through orchestration means that admins don’t have to burden application owners with costly refactoring projects.

  • Login to the HYPR admin console
  • Create a new application in the HYPR control center
  • Generate an API token for the Maverics Orchestrator
  • Copy that token into your configured secret provider
  • Configure the HYPR integration in the Maverics yaml file with your HYPR domain, HYPR app ID, and the secret provider pointer to your stored access token
  • Optionally, customize the login page where users enter their username and the interstitial page that a user sees while they are responding to the HYPR prompt on their device
  • Finally, in any app gateway or authentication provider, name HYPR as the IDP to bring passwordless to your users

Get your YAML config settings and deploy

Maverics Identity Orchestration works as a simple YAML config: just fill in the blanks and go. There’s no custom code, no rewrites and no long engagements. You may need to make light config adjustments based on your environment, but that’s it.

Ready to start using HYPR as an independent IDP? Take a look at this simple YAML sample to see how easy it can be.

Download Recipe

Solve more modernization challenges with ready-to-deploy recipes

How to add 1Kosmos passwordless step-up authentication and user registration

Quickly protect any resource with Passwordless MFA (PMFA) and register new users without disruption to the access workflow.

Step-up
1Kosmos
PMFA
Azure AD
Maverics
Passwordless
How to move from OAM to Azure AD

Oracle Access Manager is challenging to maintain and provides limited app protection possibilities. Use this recipe to replace it with Azure AD without refactoring your apps.

OAM
Azure AD
Maverics
Target App
Authentication
Modernization
How to move from OAM to Okta

Oracle Access Manager is challenging to maintain and provides limited app protection possibilities. Use this recipe to replace it with Okta without refactoring your apps.

OAM
Okta
Maverics
Target App
Authentication
Modernization
How to move from SiteMinder to Azure AD

SiteMinder’s end of service is coming. Use this recipe to replace it with Azure AD without refactoring.

CA SiteMinder
Azure AD
Maverics
Target App
Authentication
Modernization

View all recipes

Getting started is easy

Start integrating your identity services with Identity Orchestration.

Get a demo