SecureAuth compatibility guide
Updated May 25, 2022
This topic describes how the latest release of SecureAuth products interoperate. Use this information in the following ways:
New customers: Understand how the product releases you're installing interact. Find out about the latest supported devices.
Existing customers: Thinking about upgrading? Ensure that the product release you're considering upgrading to supports all the pieces of your current installation. Find out about the latest supported devices.
Potential customers: Just browsing? Learn about the many different SecureAuth product offerings and the supported releases. Find out about the latest supported devices.
Please contact support at support.secureauth.com for assistance or with any questions.
Note
SecureAuth is constantly adding support for new browsers and devices to the product. If you do not see the required OS or browser listed here, be sure to visit this document often to see if it has been added.
Products and Components
This topic shows the supported Windows server operating systems for new installs and upgrades for each Identity Platform product release and the hybrid and cloud deployment types.
Hybrid deployment
The table details the supported Windows server operating systems for hybrid (on-prem or cloud) Identity Platform deployments.
Server operating system | Identity Platform Upgrade | Identity Platform New install | ||||||
|---|---|---|---|---|---|---|---|---|
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | 19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | |
Windows 2019 | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows 2016 | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows 2012 R2 | Contact SecureAuth Support | Contact SecureAuth Support | No | No | No | No | No | No |
Cloud deployment
The table details the supported Windows server operating systems for cloud Identity Platform deployments. Cloud deployments require on-premise installation of the SecureAuth Connector for your on-prem data stores to communicate with the Identity Platform.
Server operating system | Identity Platform Upgrade | Identity Platform New install | ||||||
|---|---|---|---|---|---|---|---|---|
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | 19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | |
Windows 2019 | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows 2016 | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Windows 2012 R2 | Contact SecureAuth Support | Contact SecureAuth Support | No | No | No | No | No | No |
This table describes the latest version of the SecureAuth Connector that works with the Identity Platform.
See SecureAuth Connector update for update information.
Identity Platform release | SecureAuth Connector version |
|---|---|
19.07 or later | 1.2.6 |
This table describes the browsers to use with the Identity Platform client.
Desktop Browser | Version | Supported by SecureAuth Identity Platform | Notes | |||
19.07.xx (IdP + Cert) | 20.06.xx (New Experience UI) | 21.04.xx (New Experience UI) | 22.02 (New Experience UI) | |||
|---|---|---|---|---|---|---|
Apple Safari | IDP+Cert: 8+ Identity Platform New Experience: 77+ | Yes | Yes | Yes | Yes | |
Google Chrome | IDP+Cert: 40+ Identity Platform New Experience: 13.1+ | Yes | Yes | Yes | Yes | Version 39 and later running on OS X will not work with Java certificate delivery functionality |
Internet Explorer | 11+ | Yes | Yes | No | No | |
Microsoft Edge | IDP+Cert: 41+ Identity Platform New Experience: 83+ | Yes | Yes | Yes | Yes | Certificate delivery not supported |
Microsoft Edge (Legacy) | 44 and earlier | Yes | No | No | No | |
Mozilla Firefox | IDP+Cert: 31+ Identity Platform New Experience: 83+ | Yes | Yes | Yes | Yes | |
YubiKey Products | Supported by SecureAuth® Identity Platform | |||
|---|---|---|---|---|
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | |
YubiKey 5 | Yes | Yes | Yes | Yes |
YubiKey 5 Nano | Yes | Yes | Yes | Yes |
YubiKey 4 | Yes | Yes | Yes | Yes |
YubiKey 4 Nano | Yes | Yes | Yes | Yes |
YubiKey Neo | Yes | Yes | Yes | Yes |
YubiKey Neo-N | Yes | Yes | Yes | Yes |
YubiKey Edge / YubiKey Edge-N | Yes | Yes | Yes | Yes |
YubiKey Standard / YubiKey Nano | Yes | Yes | Yes | Yes |
Tested FIDO2 devices
SecureAuth Identity Platform release 20.06.xx, 21.04.xx, and 22.02.xx support the following FIDO2 devices; however, any WebAuthn-compliant device should work for enrollment and authentication on supported browsers.
FIDO2 Device | Type | Login Device | Browser | Notes |
|---|---|---|---|---|
Windows Hello OS | PIN | Windows desktop, laptop | Google Chrome Mozilla Firefox Microsoft Edge | |
Windows Hello OS | Fingerprint | Windows desktop, laptop | Google Chrome Mozilla Firefox Microsoft Edge | |
Android OS | PIN | Android mobile | Google Chrome Mozilla Firefox | |
Android OS | Fingerprint | Android mobile | Google Chrome Mozilla Firefox | |
Mac OS | Password | Mac desktop, laptop | Google Chrome | |
Mac OS | Fingerprint | Mac desktop, laptop | Google Chrome | |
Google Titan Security Key | NFC | Windows desktop, laptop Android mobile | Google Chrome Mozilla Firefox Microsoft Edge* | *Supported on Windows desktop / laptop only |
Google Titan Security Key | USB | Windows desktop, laptop Android mobile | Google Chrome Mozilla Firefox Microsoft Edge* | *Supported on Windows desktop / laptop only |
Google Titan Security Key | Bluetooth | Windows desktop, laptop Android mobile | Google Chrome Mozilla Firefox Microsoft Edge* | *Supported on Windows desktop / laptop only |
YubiKey 5 | USB | Windows desktop, laptop Mac desktop, laptop Android mobile | Google Chrome Mozilla Firefox Microsoft Edge* Apple Safari* | *Supported on Windows desktop / laptop only |
YubiKey 5 | NFC | Android mobile | Google Chrome Mozilla Firefox |
This table describe the minimum versions of .NET Core and .NET Framework needed to run with the Identity Platform.
Product release | .NET Core version | .NET Framework version | Note |
|---|---|---|---|
Identity Platform 22.02 | 3.1 | 4.7.2 or later | Upgrades to the Identity Platform 22.02 release requires you to install or upgrade .NET Core 3.1. See the Upgrade to .NET Core 3.1 topic. |
Identity Platform 21.04 | 2.1 | 4.7.2 | |
Identity Platform 20.06 | 2.1 | 4.7.2 | |
Identity Platform 19.07 | 2.1 | 4.7.1 |
This table describes the minimum version of Java needed to run with the Identity Platform.
Product Component | Version | Supported by SecureAuth Identity Platform | Notes | |||
|---|---|---|---|---|---|---|
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | |||
JRE for RADIUS Server for 20.03+ | 11 | Yes | Yes | Yes | Yes | JRE version 11 of AdoptOpenJDK |
JRE for RADIUS Server 19.06 and 19.09 | 8 | Yes | Yes | Yes | Yes | JRE version 8 of AdoptOpenJDK |
JRE for RADIUS Server 1.0.1.10 | 8 | No | Yes | Yes | Yes | |
Java Certificate Applet | 8 | Yes | Yes | Yes | Yes | Google Chrome on OS X versions 39+ are not supported |
Note
Refer to SecureAuth IdP Java Troubleshooting for more information
This table describes the directories (aka, data stores) supported by the Identity Platform.
User Directory | Version | Supported by SecureAuth Identity Platform | |||||||
|---|---|---|---|---|---|---|---|---|---|
Hybrid deployments* | Cloud deployments | ||||||||
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | 19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | ||
Active Directory (AD) | 2003 - 2016 | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
LDAP | v3 | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes |
AD-LDS | 2008, 2012 | Yes | Yes | Yes | Yes | No | No | No | No |
Lotus Domino | v9 | Yes | Yes | Yes | Yes | No | No | No | No |
MS-SQL | 2005 + | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
ODBC | All SecureAuth IdP Supported OS Platforms | Yes | Yes | Yes | Yes | No | No | No | No |
ASPNETDB | .NET2 + | Yes | Yes | Yes | Yes | No | No | No | No |
SecureAuth IdP Web Service (Multi-data Store) | SecureAuth IdP 7.5 + | Yes | Yes | Yes | Yes | No | No | No | No |
Sun ONE (ODSEE) | 11.1.1.5.0 | Yes | Yes | Yes | Yes | No | No | No | No |
Azure AD | 2015 | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes |
Oracle Database | 11.2, 12.1 | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes |
NetIQ eDirectory | 8.8 SP8 | Yes | Yes | Yes | Yes | No | Yes | Yes | Yes |
* Not all directories are supported in the Identity Platform New Experience, but all are supported through the Classic Experience.
This table describes the minimum version of supported identity types.
Accepted Identity Types | Version | SecureAuth Identity Platform Support | ||||
|---|---|---|---|---|---|---|
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | Notes | ||
SecureAuth Web SSO Token | 2.0 - 4.5 | Yes | Yes | Yes | Yes | |
SAML | 2.0 | Yes | Yes | Yes | Yes | |
OpenID | 2.0 | Yes | Yes | Yes | Yes | |
Integrated Windows - NTLM / Kerberos | 2003 - 2012R2 | Yes | Yes | Yes | Yes | Not supported for cloud |
X.509 Certificate | X.509 v3 | Yes | Yes | Yes | Yes | |
Common Access Card (CAC) | N/A | Yes | Yes | Yes | Yes | |
Personal Identity Verification (PIV) Card | N/A | Yes | Yes | Yes | Yes | |
Smartcard | N/A | Yes | Yes | Yes | Yes | |
Cisco ISE / pxGrid | 1.3 | Yes | Yes | Yes | Yes | |
This table describes the post-authentication actions that can be set up through the Identity Platform.
Post-authentication Action | Version | Supported by SecureAuth Identity Platform | Notes | |||
|---|---|---|---|---|---|---|
19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | |||
SAML | 1.1, 2.0 | Yes | Yes | Yes | Yes | 1.1 support is limited |
OpenID | 2.0 | Yes | Yes | Yes | Yes | |
OpenID Connect (limited profile support) | 1.0 | Yes | Yes | Yes | Yes | |
OpenID Connect (full profile support) | 1.0 | Yes | Yes | Yes | Yes | |
WS-Federation | 1.2, 1.3 | Yes | Yes | Yes | Yes | |
WS-Trust | 1.2, 1.3 | Yes | Yes | Yes | Yes | |
Mobile | Supported iOS / Android Versions | Yes | Yes | Yes | Yes | The mobile app uses a browser for authentication, so multiple mobile apps can read the authentication cookie to enable SSO. |
Web Token (FBA) | Supported Browsers | Yes | Yes | Yes | Yes | |
X.509 Certificate (Java and Native) | SecureAuth CA | Yes | Yes | Yes | Yes | |
OAuth | 2.0 | Yes | Yes | Yes | Yes | |
Form-based | N/A | Yes | Yes | Yes | Yes | |
Portfolio products
The following sections describe the SecureAuth Portfolio products, which interoperate with and extend the Identity Platform MFA capabilities for your Windows, Mac, and Linux machines via Login for Endpoints, your iOS and Android devices via the Authenticate app, and your VPN and remote resources via SecureAuth RADIUS.
SecureAuth Identity Store | Supported by SecureAuth Identity Platform | Notes | |||
|---|---|---|---|---|---|
21.04.xx (cloud) | 21.04.xx (hybrid) | 22.02.xx (cloud) | 22.02.xx (hybrid) | ||
21.04+ | Yes | No | Yes | Yes | Separately licensed product; Identity Platform required |
Android and iOS mobile devices
Android Mobile Device | iOS Mobile Device | ||||||||
|---|---|---|---|---|---|---|---|---|---|
Authenticate App Version | 5.x (Lollipop) | 6.x (Marshmallow) | 7.x (Nougat) | 8.x (Oreo) | 9.x (Pie) | 10.x (Q) | iOS 11.x | iOS 12.x | iOS 13.x |
20.03.xx | No | Yes | Yes | Yes | Yes | Yes | No | Yes | Yes |
19.12.xx | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Android and Apple paired watches
Android Wear OS Paired Watch | Apple Series Paired Watch | |||||
Authenticate App Version | AW w1 | AW w2 | Apple Series 1 | Apple Series 2 | Apple Series 3 | Apple Series 4 |
|---|---|---|---|---|---|---|
20.03.xx | Yes | Yes | Yes watchOS 4 | Yes watchOS 4 | Yes watchOS 4 and 5 | Yes watchOS 4 and 5 |
19.12.xx | Yes | Yes | Yes watchOS 4 | Yes watchOS 4 | Yes watchOS 4 and 5 | Yes watchOS 4 and 5 |
Other devices
Device types | Notes | ||
Authenticate App Version | Chromebook; supported OS | iOS and Android Tablets; supported OS | |
|---|---|---|---|
20.03.xx | Yes Chrome OS 80.x.x.x | Yes See "Notes" | iOS and Android tablets: Any iOS or Android tablet is supported, as long as it meets the minimum OS under "Android and iOS mobile devices" listed above. |
19.12.xx | Yes Chrome OS 76.x.x.x | Yes See "Notes" | |
SecureAuth Mobile SDK | Supported by SecureAuth Identity Platform | Notes | ||
|---|---|---|---|---|
19.07.xx | 21.04.xx | 22.02.xx | ||
Android OS 10+ | No | Yes | Yes | Implementation language: Kotlin |
iOS 13+ | No | Yes | Yes | Implementation language: Swift |
Login for Windows | Supported by SecureAuth Identity Platform | Notes | ||||
|---|---|---|---|---|---|---|
9.3.x | 19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | ||
Windows Server 2019 64-bit | Yes | Yes | Yes | Yes | Yes |
|
Windows Server 2016 64-bit | Yes | Yes | Yes | Yes | Yes |
|
Windows Server 2012 R2 64-bit | Yes | Yes | Yes | Yes | Yes |
|
Windows 11 64-bit | No | Yes | Yes | Yes | Yes | |
Windows 10 64-bit | Yes | Yes | Yes | Yes | Yes |
|
Windows 8.1 32-bit / 64-bit | Yes | Yes | Yes | Yes | Yes |
|
Login for Mac | Supported by SecureAuth Identity Platform | Notes | ||||
|---|---|---|---|---|---|---|
9.3.x | 19.07.xx | 20.06.xx | 21.04.xx | 22.02.xx | ||
macOS 12: Monterey | Yes | Yes | Yes | Yes | Yes | |
macOS 11: Big Sur | Yes | Yes | Yes | Yes | Yes |
|
macOS 10.15: Catalina | Yes | Yes | Yes | Yes | Yes |
|
macOS 10.14: Mojave (Liberty) | Yes | Yes | Yes | Yes | Yes | minimum macOS version |
Login for Linux | Supported by SecureAuth Identity Platform | Notes | |
|---|---|---|---|
21.04.xx | 22.02.xx | ||
Red Hat 8.1+ | Yes | Yes |
|
Debian 10+ | Yes | Yes |
|
Ubuntu 20.04+ | Yes | Yes | Also supported is a newer Long Term Support (LTS) version |
Supported Servers | Supported Protocols | SecureAuth Identity Platform Adaptive Authentication IP Checking Feature | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
|