What is Device Trust and why is it important?
Why is Device Trust Important?
We live in an age where your identity is persistently being attacked. Your credentials have already been compromised, or soon will be, thanks to the myriad of advanced tactics threat actors have in their arsenal.

Stolen and lost passwords are the number one source of breach, resulting in exposed security holes, productivity loss, and costly help desk/support calls. Device Trust eliminates this vulnerability entirely by establishing the endpoint root of trust at the start of the authentication journey, and continuously reassessing security posture thereafter.

The new perimeter is the cloud, where your user name and password for your endpoint devices can be used for remote access, making the attack surface limitless. System vulnerability has skyrocketed, as have costs, with little done to mitigate friction as solutions fall short of enterprise needs. An Intelligent MFA in combination with a passwordless solution is necessary for securing your enterprise.

Device Trust solutions allow enterprises to enable desktop MFA and passwordless authentication, minimizing the attack surfaces by:
  1. Making passwords benign or going passwordless altogether
  2. Measuring the real-time security hygiene of devices
  3. Delivering remote audit logs and control of user access
  4. Cutting costs of help desk/support
  5. Providing administrative risk-based policy orchestration
What is Device Trust?
Acceptto Device Trust (DT) is an application that adds intelligent MFA to the Windows Remote and local logins, as well as macOS login.
How does Device Trust work?
Device trust provides a secure and convenient alternative for accessing your devices using your biometric factors and mobile devices. Device Trust uses the Acceptto's AIML powered technology to decrease friction and increase security without relying on static usernames and passwords. It secures logins to Windows and macOS machines through its proprietary AIML and Risk Engine.
What do I need to install and make Device Trust work?
On all supported platforms, Device Trust is provided as a self-contained software package including all of the required dependencies, so you don't have to install any other software packages or dependencies.
What system logs does Device Trust capture?
Device Trust collects certain information on your devices to make sure you can always access your device securely with zero hassle and minimum friction. This information might include:
  1. Records of login, lock and logout attempts on the device
  2. Network configuration setup including IP address and other network related information
  3. Firewall, system auto-update and BitLocker configuration on the device.
What are the top Device Trust features and capabilities?
Device Trust provides:
  1. True passwordless experience
  2. Significantly reduced friction by getting rid of passwords
  3. Highly configurable and dynamic security policies that adapts to your biometric patterns and personal routines
  4. An early warning platform to detect and prevent unauthorized access to your device with no extra effort
What type of MFA factors are supported by Device Trust?
Device Trust supports the following:
  1. Push
  2. Timed based One-Time Password (TOTP)*
  3. Security key (U2F/FIDO2/RFID/Ble/etc.)*
  4. Biometric on Workstation*
  5. Biometric on Phone
  6. Password (If enterprise desires)
  7. SMS (We don’t recommend using this, due to known security issues)
  8. Two-Way SMS
  9. Email (We don’t recommend using this, due to known security issues)
*TOTPs, Security keys (U2F/FIDO2), and Biometric can be used for offline access*
authenticators
Can I remotely lock my workstation in case of leaving my desk or stolen laptop?
Yes, you can lock or log out your session remotely via Acceptto’s It'sMe mobile app.
What logon interfaces can Device Trust protect?
Device Trust adds multi-factor authentication for remote and local console sessions.
What OSes are supported by Device Trust?
Device Trust supports Windows 10, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019 and macOS Big Sur.
What type of users can I secure with Device Trust?
Device Trust supports three different Windows user types.
  1. Local user: for example, John
  2. Windows Domain Account: for example, Acceptto\john.smith or john.smith@acceptto.com
  3. Microsoft account: for example, john.smith@outlook.com
Does Device Trust support BYOD and Managed devices both?
Yes, Device Trust can easily be deployed on both BYOD and managed devices.
Does Device Trust support offline MFA?
Yes. TOTP and Security (U2F) keys can be used as offline MFA factors in DT when a Windows system is unable to reach the Acceptto cloud.