SURFsecureID

Secure your services extra with multi-factor authentication

With SURFsecureID you add an extra step to logging in: the user logs in with a username, password and a second factor, such as a mobile app (tiqr). SURFsecureID also has different levels of reliability: your institution can choose which level is desired for a particular application. You can also combine SURFsecureID with Microsoft Azure MFA.

Do you have questions?

Watch video

Advantages

Additional security

SURFsecureID is ideally suited for services with sensitive data and preventing account abuse.

Multiple options for second factor

The user logs in with a username, password and a second factor: an SMS, usb key (Yubikey), mobile app (tiqr) or Microsoft token.

Higher confidence level

SURFsecureID has a higher confidence level than other multi-factor authentication solutions.

Can be arranged flexibly

The institution chooses how many, of what type and of what confidence level second-factor agents may be used.

Meets global information security standard

SURFsecureID is an ISO27001-certified service.

Do you have a question about SURFsecureID? Get in touch.

About SURFsecureID

SURFsecureID is used for services linked to SURFconext, but also for services running within your institution and cloud services not linked to SURFconext. Think of a central (authentication) facility such as ADFS, Citrix, F5 BIGIP or NetIQ. The SURFsecureID portal provides insight into the registered second factors and offers the possibility to support employees and students. The self-service portal allows users to manage their second factor themselves.

Webinar SURFsecureID: what is it and what new features are there?

In this webinar, you will hear all about SURFsecureID and see the latest features.

SURFsecureID reliability levels

SURFsecureID supports different levels of reliability. The institution can choose which level is desired for a particular application. An end user's second factor must then comply with this level. In the case of a high reliability level, the user's identity and the chosen second factor are verified before using the service. This sets SURFsecureID apart from other MFA solutions. SURFsecureID is thus in line with international standards and the security guidelines of the Dutch government and the EU.

Rates

View the tariffs of this service.

SURF Services and rates 2025

Download English, pdf (2 MB)

Meer over SURFsecureID

Also use your own MFA solution for services behind SURFconext?

Case study

You can! Read the interview with UU an HZ who have each used their own MFA solution behind SURFconext and what advantages it offers.

Case study
SURF Identity & Access Unconference
Retrospective

On 15 October 2024, some 85 IAM specialists gathered at the very first SURF Identity & Access Unconference. Participants were allowed to come up with their own ideas for sessions on the spot - the…

Retrospective
Case study: safe working from home at Radboud University

Case study

To enable secure remote working, Radboud University combines two SURF services: eduVPN for encrypted connections and SURFsecureID for cases where username and password do not provide sufficient security.

Case study