How to Secure Access with MobilePASS+ Authentication App

Welcome! I'm excited to show you how to start using MobilePASS+ -- Thales’ mobile authenticator app. Supporting one-time passwords, device-bound passkeys, biometrics, and more, MobilePASS+ is well-equipped with modern, phishing-resistant authentication. Let's get started.

To start off, you'll need to download and install the app. MobilePASS+ is available on the Apple App Store, Microsoft Store, and Google Play. Let's open the App Store.

Now, you'll search for MobilePASS+, and click Install.

Once it's done, go ahead and open the app.

There you have it, you're in! In order to reap the full benefits of MobilePASS+, you'll need to make sure it's set up correctly in your settings and both devices have bluetooth turned on.

Once you go to your settings, you'll enable autofill for MobilePASS+. This is under device settings > general > AutoFill & Passwords.

Toggle the button next to the MobilePASS+ label to enable it as a passkey manager.

Great! You can actually start using MobilePASS+ right now for both personal and enterprise applications. But...how do I set that up? Don't worry, I'll show you. Click Next to keep going.

For the sake of this demo, let's pretend that we're at work and our IT manager has provisioned for us to use MobilePASS+ to access some applications. To first enroll, there are a few steps we'll have to follow, but once we've done the initial setup, the authentication flow is super easy. Click start to begin.

In this case, we're trying to log-in to an application like we normally do, with our username and password.

It looks like our IT manager has set a policy using SafeNet Trusted Access, requiring us to add another layer of security in order to access this app. As you can see here, I can do this on the fly, without disrupting my log-in flow. Let's click Add Passkey authenticator.

As you can see, in order for us to register a new authenticator, we have to prove we are who we say we are. This time only, we'll be asked to enter a code sent to our email address or enter our password.

We've pasted the code from our email, and then we'll click continue.

Alright, now that we've proven our identity, it's gonna give us a few options for adding a new authenticator.

We could select Authenticator App for standard OTP authentication, which seems like the obvious choice here since we're using MobilePASS+, but I actually want to enroll a device-bound passkey within the app--a much more secure alternative--so let's select the last option.

Since we're enrolling using our mobile app, we'll select "Use a Phone or Tablet."

Once the QR code appears, we'll return to our MobilePASS+ app and click Activate Now to scan the code.

Once you give the app access to your camera, you'll scan the QR code. The device will recognize the QR code as a passkey and ask you if you want to process this request, to which you'll click "OK", then "Continue" and "Add Passkey". Then, you'll be asked to use a biometric, which is a requirement in order to enroll a device-bound passkey. In this case, we're using FaceID.

The last thing we have to do is provide a nickname to remember this passkey by. Then, I can continue-on with my work day and gain access to this application.

Now, the next time I want to log-in to this application, I'll follow simpler steps. I'll type my username, select “Phone or Tablet” from the pop-up, scan the QR code, and scan my face to prove it's me. No annoying passwords but with a higher level of security.

That's it! IT and Security managers can use identity providers, such as SafeNet Trusted Access, to mandate the use of MobilePASS+ when accessing different applications. To learn more about that, explore our other interactive demos, or contact us directly. Thanks for spending time learning with me today. See you later!