Architecture

How does Call2Unlock work from the IT administrators perspective?

 

Call2Unlock has basically five components

  • IVR Engine

    phonesign

    This component interacts with the Corporate PBX of the company, sending audio messages to the user and getting the DTMF inputs from the user

  • LDAP command Engine

    icon

    interacts sending the appropriate commands to the Active Directory servers in a complete domain forest to perform the unlock or reset of the accounts in a secure and encrypted communication.

  • Web Administration Tool.

    icon

    Web site for Administrators to configure the system, get reports, and self-service pages, for end users, where they can provide extra information like PIN numbers and secondary emails.

  • RADIUS - Google Auth.

    icon

    Call2unlock provides its own RADIUS - Google Authenticator Implementation, to be used as a mechanism of authentication by the end users. This feature is configured 100% from the Web Administration Tool. So Call2unlock can be used not only as a Self Service Tool for accounts, but also as two factor Authentication platform. Also Call2Unlock can be integrated with any Multi Factor Authentication System and RADIUS server.

  • Web User Self Service Tool.

    icon

    Since the users can auto-enroll their accounts to Google Authenticator using our Web User enrrollment panels, they can also unlock or reset their accoounts using their Google Authenticator or the Token provided by your MFA in a secure way using our web self-service interface

architecture
  1. Call2Unlock can be installed in any physical or virtual machine.

Is placed within the private network of the company, behind the private firewall. That makes Call2Unlock, a secure system.

 It can be directly integrated with any existing PBX in the company.

Call2unlock is also compatible with any Active Directory 2003 or higher.

You can associate phone extensions to users. So, users could apply changes, only if they call from their assigned extensions. Also External Calls can be allowed, by the administrator, adding the personal or external phones in a secure white list.

Call2Unlock has its own RADIUS - Google Authenticator implemetation so can be used as PIN or Challenge mechanisim that allow the end users to unlock or reset their passwords making use of the tokens provided by Google Authenticator. Also the tokens can come from an existing RADIUS - Token or MFA infrastructure. To Get more information, please consult our documentation, or watch our Youtube videos (link below).

Click here to Watch or Youtube Videos and Demonstrations

Contact us if you have any questions, contact us. We can help you to get Call2Unlock working for any of its versions