EZSmartCard simplifies the passwordless onboarding process by giving users and administrators the following onboarding options:
EZSmartCard leverages industry leading AI technology to scan Government IDs and checks against global databases to ensure the ID is a valid government issued ID. Then it uses Face ID with liveness checks technology to validate that the user matches the person from the government ID.
To enable current domain users to upgrade their security to a passwordless smartcard, EZSmartCard enables smartcard creation when authenticated with an MFA identity to the desired domain.
As organizations are adopting Microsoft’s Identity isolation best practices the need of bootstrapping from another domain to have a fully passwordless onboarding experience was a key feature for EZSmartCard.
To support existing workflows, EZSmartCard allows IT administrators to create a blocked card for the end user, EZSmartCard then will send the user an unblock code which the user will then use to unblock the smartcard.
EZSmartCard simplifies the onboarding process by automating most of the steps currently done by IT teams around the world.
The user or someone on behalf of the user requests a new smartcard.
The smartcard is assigned and sent to the user.
The user authenticates using one of the methods mentioned in the onboarding options section.
The user selects the domain that they want to create a smartcard for.
EZSmartCard client sends the request to your EZSmartCard instance including a key attestation to validate the certificate was created in the smartcard issued to the user.
EZSmartCard validates the user has permission to create this smartcard and validates the cryptographic integrity of the request.
EZSmartCard sends the request to your certificate authority (CA).
Your certificate authority issues the certificate.
EZSmartCard installs the certificate in the smartcard.
The user is ready to start using their smartcard.