Shield for Office365

Take No Chances When It Comes To Security!

With the erosion of the Enterprise/Campus network perimeter, thanks to enterprise mobility & BYOD, users access sensitive information from multiple devices & locations.



Start your free trial!

Problem Statement

Customers using QuickLaunch as a federated authentication service
  • The requests get directed to QuickLaunch Identity Provider for Login
  • Due to the request coming from Office365TM, QuickLaunch does not block the request*, instead sends it to your Active DirectoryTM to process
  • If username if valid and the password isn’t, account would locked out after policy is violated** (if there is a policy set in your Active Directory)
  • If username is invalid, the login service reloads with an ‘invalid username’ error
  • Due to the extremely high frequency of the number of requests, your Active DirectoryTM may experience performance issues
  • *QuickLaunch does not automatically block the attack because the request is coming from a valid source directly, namely Microsoft
  • **Account lockout on Active DirectoryTM because valid Usernames are being used. This is possible because staff/student directories are typically available publicly
Customers using MicrosoftTM or another 3rd party as a federated authentication service
  • The requests get directed to MicrosoftTM/3rd Party’s Identity Provider for Login
  • Due to the request coming from Office365TM, the request isn’t blocked and sends the request to your Active DirectoryTM to process
  • If username is valid and the password isn’t, account would locked out after policy is violated** (if there is a policy set in your Active DirectoryTM)
  • If username is invalid, the login service reloads with an ‘invalid username’ error
  • Due to the extremely high frequency of the number of requests, your Active DirectoryTM may experience performance issues

What are the symptoms of a brute force attack?


What are your options?

You can go to MicrosoftTM

$72 / user / year

Procure DDOS protection service from MicrosoftTM which would filter and block ‘bad actor’ IPs

  • Problem gets resolved.
  • Cost of enabling the service.

You can go to QuickLaunch

$8 / user / year

Procure QuickLaunch Shield which would filter and block ‘bad actor’ IPs

  • Problem gets resolved at approximately 11% of what you would pay to Microsoft annually.
  • Currently, this service and the blacklisting needs to be manually configured and maintained by QuickLaunch.

Note: This means that even after enabling QuickLaunch Shield, if there is an attack from a new indirect IP that isn’t on the QuickLaunch Shield global blacklist policy already, you may still experience the symptoms and be required to create a support case to allow for QuickLaunch to update its policies

This will be automated with SmartShield, which has a release date of April 30th, 2019 and will be a no-cost upgrade

Ready to Enhance IAM at Your Organization?

Schedule a demo with us and learn all about our IAM products - IDP, SSO, Smart Password Manager, Automated Provisioning, Multi-Factor Authentication, Adaptive Authentication, and Shield. Implement our solutions at your institution and enhance the efficiency of all your users.

Password managerPassword manager

What our customers say about us

  • We have greatly improved the user experience for everyone trying to find and utilize the many application services available at Illinois College. We have also saved a significant amount of budget and time with password reset, allowing our users to reset their own passwords 24/7, rather than having to wait for the service desk to be open. Accounts are better secured now that they are tied to SSO and forced to comply with our AD password policy, and with MFA we look to provide even better security.

    Patrick Brown
    Chief Information Officer, Illinois College
  • We improved user experience for everyone at Roanoke-Chowan Community College who was finding it difficult to login to multiple applications from different screens using multiple credentials. QuickLaunch Single Sign-On provided one-click secure access to all applications from a single screen, thereby improving user experience. Moreover, users can now reset their passwords on their own without raising the password reset request to help desk. All our user accounts are secured with strong MFA policies offered by QuickLaunch.

    Michael J. Wilson
    System Administrator, Roanoke-Chowan Community College
  • We’d tried and abandoned multi previous approaches to single sign-on before adopting QuickLaunch. We needed a cloud-based solution that offered password reset, CAS, SAML, MFA, and the ability to ease the stress on the IT staff. QuickLaunch offered this and much more.

    Allen Saylor
    Chief Technology Officer, Abraham Baldwin Agricultural College
  • The professionalism and technical knowledge demonstrated by the QuickLaunch Team is unmatched. Had it not been for the team's dedication to their identity platform, I am certain that there is no way that our time-sensitive implementation would have been possible

    Robin Strader
    Executive Director of Information Systems, Pierpont Community and Technical College
Get a Demo