Web Application Protection

The ESA Web Application Protection module automatically adds 2FA into the authentication process of all supported Web Applications. The module will be loaded the next time the protected Web Application is accessed after ESA has been installed.

Users will log in using the normal authentication process of the Web Application. After being authenticated by the Web Application, the user will be redirected to an ESA web page and prompted for an OTP or prompted to approve the push notification or prompted  to authenticate using FIDO.  The user will only be allowed access to the Web Application if a valid OTP is entered or the push notification is approved or FIDO authentication is successful.

The user's 2FA session will remain active until they log out of the Web Application or close their browser.