Secure Active Directory
Credentials with

Multi-Factor Authentication (MFA)

UserLock makes it easy to enable multi-factor authentication on Windows logon and RDP connections. Verify the identity of all users and secure access to your network.

Start a free trial Book a Demo
Multi-Factor Authentication (MFA)

Secure Two-Factor Authentication

UserLock supports MFA through authenticator applications or programmable hardware tokens. They offer a second factor to better protect access to the network.

Relying on cryptographic algorithms for time-based one-time passwords (TOTP), they offer strong and simple two-factor authentication. Examples include Google Authenticator, Microsoft Authenticator, LastPass Authenticator, Authy and Token2.

Offline Access

Offline Access

Since the codes are generated and displayed on the same device, it removes the chance of hacker interception and can even work offline.
User authentication for your employees is possible just about everywhere.

For All Users, including Privileged Accounts

For All Users, including
Privileged Accounts

Protect access from all users, including the most privileged system and admin accounts. This includes local and remote logins for workstation and server connections.

Deploy Easily, At Scale and Alongside Active Directory

Userlock teams up seamlessly with Active Directory. Administer by User, Group and Organizational Unit to make implementation easy, even for larger user bases.

Manage the time users have to enroll in MFA. Users can skip configuration but will need to specify why.

Deploy Easily, At Scale and Alongside Active Directory

Intuitive for the User

Enrollment is intuitive and simple for users to do on their own.

  1. 1 They install the authenticator app on their phone.
  2. 2 They scan the QR code displayed at login.
  3. 3 They enter a code which confirms activation.
Intuitive for the User

Thereafter, users’ log in using their credentials and then when prompted, with a code shown on the app or token. A help request will immediately notify the administrator.

MFA - Userlock

Customize MFA
for your Organization

Customize MFA for your Organization

Administrators may want to avoid prompting the user for MFA each time they log in. With UserLock you can define under what circumstances MFA is asked for:

  • By connection type (local logins and RDP sessions)
  • By workstation and/or server connections
  • By frequency and circumstances of authentication requests

Track and React
to MFA

  • Reporting and insights across your organization
  • Real-Time alerts on user requests for help
  • One-click response to reset an MFA key or temporarily disable MFA for a user.
Track and React to MFA

Enforce Context-Aware

Once authenticated, UserLock’s logon restrictions help further verify all users’ claimed identity and secure network access.

Set policies to authorize, limit or deny access attempts by machine, device, location, time, session type, initial access point and number of simultaneous sessions.

Learn more

« Stolen user credentials were at the root of some of the biggest hacks in the last few years. UserLock is a powerful product that focuses on preventing the internal and external threats related to compromised credentials, by providing the administrators with detailed options for restricting and monitoring access to their Windows-based networks. »

HelpNet Security


Request a personalized demo now

Discover how UserLock can help you meet your needs.

Download UserLock

The trial version offers:

  • 30-day full version
  • no user limits
  • free technical support

Supported systems

Release Date : 9/24/2019
Version : UserLock 10
What's new in this version ?