with WSO2 Identity Server

Authentication takes many forms and has evolved from usernames and passwords, single factor to multi-factor, to risk-based authentication prompts. It is a vital part of any customer identity and access management system to provide secure access to applications and is often a battle between balancing usability and security.

Try WSO2 Identity Server
Strong authentication

What is Strong Authentication?

Strong authentication helps to prove or confirm one’s identity so the right user has access to the resource in question. Username and passwords were the stepping stones in providing access or authenticating a user, but with phishing attacks and data breaches, user authentication needed to be complex to secure the user and the resource. Therefore authentication needs to be more robust and provide additional factors to increase security. These factors can be a knowledge factor, ownership factor, or an inherence factor. Examples would include a password or a pin (knowledge factor), phone or security tokens such as one time passwords (ownership factor) or biometric data (inherence factor). Strong authentication could take the form of Multi Factor Authentication or adaptive authentication.

What is Multi Factor Authentication?

  • Multi Factor Authentication (MFA) is the combined usage of authentication factors (knowledge, ownership, inherence) to verify user identity. The factors can come in the form of SMS or email as one time passwords (OTP), a FIDO device, MePIN, or any other authentication factor as an extra step to strengthen regular username and password access. It is meant to make the authentication process more secure by adding extra factors.

How to Implement Strong Authentication

WSO2 Identity Server has basic authentication (username and password-based) enabled by default and allows setting up additional authentication factors on top of it to further strengthen security for an application. WSO2 Identity Server comprehensively supports MFA with authenticators such as Email OTP, SMS OTP, FIDO etc. enabling you to design a robust authentication solution.

Why use Strong Authentication with WSO2 Identity Server?

customer authenticators

Easily extensible to support new and existing customer authenticators

Dedicated 24/7 support

Dedicated 24/7 support


Supports various authenticators such as FIDO2 in our identity ecosystem


Easy setup for passwordless authentication within minutes

Readymade script

Readymade script templates to provide easy adaptive authentication

Improved user experience balancing

Improved user experience balancing usability and security