N-WINKEY
Passwordless Windows login
Secure Windows workstations, terminal servers and remote desktops with the phone your employees already carry.
The problem
The Windows password is where attackers start
RDP endpoints and shared workstations are brute-forced and phished daily, and a stolen Windows password often unlocks far more than one machine. Rotation policies make users write passwords down; they don’t make the attacks stop.
The solution
Username plus a phone tap: the password can retire
The Notakey Windows Credential Provider adds a second factor to local and remote desktop logins. Users type their username, approve the push notification on their phone (with a forced fingerprint or face check if you configure it), and they’re logged in.
Once you’re confident, disable the default credential provider entirely: logins then require only username and the phone approval. No password to steal.
- Windows Credential Provider (MSI, Group Policy deployable)
- Workstations, terminal servers, and RDP
- Forced biometric check supported
- Active Directory user sync with multi-user approval policies
How it works
From zero to protected
- 01
Configure the appliance
Create a Windows Remote Desktop application on your Notakey appliance and connect Active Directory as the user source.
- 02
Install the credential provider
Roll out the MSI plus a registry file with your appliance credentials, by hand, script, or Group Policy.
- 03
Logins ask the phone
Each login pushes an approval to the user’s phone. Optionally disable the default provider so username + phone is the only way in.
Proof