How It Works
Deploy the Gluu Server
The Gluu Server is your central authentication server--it's where your applications send users to login, where you store information about people, and where you can configure your Super Gluu two-factor authentication service.
Enable Super Gluu
Change the default authentication mechanism in your Gluu Server so that users are presented with Super Gluu two-factor authentication during login.
Download the App
Open your app store to find and download Super Gluu. Or follow one of the links below to the iOS and Android marketplaces.
Navigate to the login page of your Gluu Server--or any app that is pointed at Gluu for authentication. Initiate the login flow. When you see a QR code, scan it with your Super Gluu app. If you've followed all the instructions... Congratulations. You've just performed a secure two-factor authentication and have paired your mobile device to your user account.
Pre-installed on every Gluu Server
Every deployment of the Gluu Server comes with out-of-the-box support for Super Gluu. This means that your engineers never have to spend time trying to figure out how to get the darn thing working! Simply navigate to the Authentication Management tab in your Gluu Server and change the default authentication mechanism to Super Gluu.
Easy to use
The first time you authenticate with Super Gluu you have to open the app and scan the QR code on your browser. That's called enrolling your device. On all subsequent login attempts you will receive a push notification alerting you when there is a login attempt against your account.
The Gluu Server does more than look at the device ID to grant access. This application uses the FIDO U2F endpoints built into the Gluu Server to enroll a public key. When authentication happens, there is a challenge response to ensure that the device has the respective private key.
Support & Customization's
Give your people the security they deserve with your own
custom branded Super Gluu two-factor authentication application.
From the app name and icon to the color scheme, Super Gluu can be branded to match your organization's existing look and feel.
Most organizations have unique requirements for authentication. Super Gluu can be customized to meet your exact needs.
Our Support & Maintenance
Building and publishing the app is only half the battle. We'll be here to maintain and enhance your security for years to come.
Is Super Gluu free to use?
Yes! Super Gluu is a 100% completely free two factor authentication mobile application. We encourage you to tell your friends too!
Can I customize the look and feel of Super Gluu?
No, however, you can use the free open source oxPush2 source code to publish your own custom branded two-factor authentication app. Or you can signup for one of our customization packages.
How do I enable Super Gluu in my Gluu Server?
Simply navigate to the Authentication Management tab within your Gluu Server and change the default authentication mode from Basic to Super Gluu.
Does Gluu provide any professional services around Super Gluu?
It depends on what types of customizations are needed. Best thing to do is just ask!
Can I use Super Gluu with an IDP other than the Gluu Server?
Super Gluu uses the FIDO U2F endpoints built into the Gluu Server to register a public key with the IDP. This is what enables the challenge / response at authentication time and what makes Super Gluu secure. In order to use Super Gluu with an IDP other than the Gluu Server, the IDP would need to support the U2F standard.
Is Super Gluu secure?
Yes! Super Gluu uses the FIDO U2F endpoints built into the Gluu Server to enroll a public key during enrolmment. When an authentication happens, there is a challenge response to ensure that the device has the respective private key.
Where can I use Super Gluu?
Super Gluu can be used for any authentication transaction that happens at your Gluu Server. So, you can use Super Gluu to login to any application that relies on your Gluu Server for authentication.