Organizations using the Gluu Server for single sign-on (SSO) can add an additional layer of security to user authentication with the Super Gluu mobile app. With Super Gluu, 2FA is as simple as approving a push notification on your mobile device.
Super Gluu supports two workflows:
One-step authentication to a website, where the person scans a QR code, and the Gluu Server looks up what person is associated with that phone.
Two-step authentication where the person signs in with username and password, then the person receives an out-of-band push notification to the mobile device to authorize access.
Super Gluu utilizes public/private key cryptography as specified by the FIDO U2F authentication standard.
For more information, please see our website http://super.gluu.org