Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


Institutions can use SURFsecureID in two ways. Both can be used at the same time:

  1. In addition to an existing institutional login. SURFsecureID is only used for the 2nd factor. This is especially interesting for use by a central (authentication) facility such as ADFS, Citrix or F5 BIGIP. This facility handles the 1st factor itself and calls SURFsecureID for the 2nd factor if necessary. This makes strong authentication available for a range of internal and external (cloud) services. This option is also called Second Factor Only, especially in the more technical documentation.
  2. For a cloud service. SURFsecureID handles the entire login for service, ie both the 1st and the 2nd factor. The 1st factor (username / password) via the IdP and the 2nd factor via the available means.