Secure Active Directory
Credentials with

Multi-Factor Authentication (MFA)

UserLock makes it easy to enable MFA on Windows logon and RDP connections. Verify the identity of all Active Directory accounts and secure access to your network.

Start a free trial Book a Demo
Multi-Factor Authentication (MFA)

Secure Two-Factor Authentication
for Windows Active Directory

UserLock supports MFA using authenticator applications which include Google Authenticator, Microsoft Authenticator and LastPass Authenticator, or programmable hardware tokens such as YubiKey and Token2.

Relying on cryptographic algorithms for Time-based and HMAC-based One-Time Passwords (TOTP and HOTP), all options offer strong and simple two-factor authentication to better protect access across an entire organization.

Google Authenticator application Yubikey Token2 miniOTP-3

Offline Access

Offline MFA Access
No Internet Connection Needed

UserLock offers a complete on premise solution, where no internet access is needed. User authentication for your employees is possible just about everywhere.

MFA and Remote Desktop

MFA and Remote Desktop (RDP)
from Outside your Network

Administrators can either apply MFA on RDP logons that originate from outside the corporate network, or for every RDP logon both inside or outside.

MFA on Workstation

MFA on Workstation
and RDP UnLock

You can include or exclude MFA for when a user is unlocking a logged-in workstation. Requiring MFA at initial login and workstation unlock does provide better system protection, but the flexibility allows you to choose what’s best.

For All Users, including Privileged Accounts

For All Users, including
Privileged Accounts

Protect access from all AD accounts, including the most privileged system and admin accounts. This includes local and remote logins for workstation and server connections.

Deploy Easily, At Scale and Alongside Active Directory

UserLock teams up seamlessly with Active Directory to make it easy to implement multi-factor authentication across an entire organization.

Activate MFA by User, Group or Organizational Unit to make it easy even for larger user bases. Manage the time users have to enroll in MFA, by allowing them to skip configuration and highlight any problems.

For example, enable MFA for an Active Directory group "HR".

Deploy Easily, At Scale and Alongside Active Directory

Intuitive Self Enrollment
for the User

Thereafter, users’ log in using their credentials, and then when prompted either with a code shown on the app/token, or by pressing the YubiKey button which automatically enters the code. A request for help from the user immediately notifies the administrator, so they can react quickly.

MFA - Userlock

Customize MFA
for your Organization

Customize MFA for your Organization

Administrators may want to avoid prompting the user for MFA each time they log in. With UserLock you can define under what circumstances MFA is asked for:

  • By connection type (local logins and RDP sessions)
  • By RDP connections that originate from outside the corporate network
  • By workstation and/or server connections
  • By frequency and circumstances of authentication requests

Track and React
to MFA

  • Reporting and insights across your organization
  • Real-Time alerts on user requests for help
  • One-click response to reset an MFA key or temporarily disable MFA for a user.
Track and React to MFA

Enforce Context-Aware

Once authenticated, UserLock’s logon restrictions help further verify all users’ claimed identity and secure network access.

Set policies to authorize, limit or deny access attempts by machine, device, location, time, session type, initial access point and number of simultaneous sessions.

Learn more

« Stolen user credentials were at the root of some of the biggest hacks in the last few years. UserLock is a powerful product that focuses on preventing the internal and external threats related to compromised credentials, by providing the administrators with detailed options for restricting and monitoring access to their Windows-based networks. »

HelpNet Security


Request a personalized demo now

Discover how UserLock can help you meet your needs.

Download UserLock

The trial version offers:

  • 30-day full version
  • no user limits
  • free technical support

Supported systems

Release Date : 3/25/2020
Version : UserLock 10.1
What's new in this version ?