McAfee One Time Password

Reduce costs associated with deployment and management of one-time passwords for authentication

Stronger passwords for stronger security

Traditional, static passwords can be risky — employees rarely change them and they can be easily hacked if a computer is lost or stolen, potentially exposing your data. McAfee One Time Password eliminates unauthorized access to your corporate resources by combining user-specific knowledge — a user name and password — with a unique, one-time password code that changes each time the user logs in, giving your data an extra layer of protection.

Two-factor authentication — at an affordable cost

Traditional one-time password solutions using hardware tokens are expensive to deploy, maintain, and replace. McAfee eliminates the expense of distributing hard tokens with a solution that sends one-time passwords through soft tokens, IM, Simple Message Service (SMS) text message, email, a mobile app, and other methods that are less costly to administer.

A mobile-ready password solution

The Pledge app instantly turns your mobile device into a security token. Available for iOS, Android, BlackBerry, and Windows Phone devices, Pledge allows you to use your smartphone or tablet to log in securely to different applications. The Pledge interface can also be customized to match your company branding.

Compliance made easy

McAfee can help you comply with regulations, including PCI DSS, that require out-of-band authentication using one-time passwords.

Fast deployment. Simplified administration.

Install and configure McAfee One Time Password without any IT expertise. It adds on easily to your existing infrastructure with authentication methods that work right out of the box. In addition to email, IM, and mobile devices, it works with USB tokens, Intel Identity Protection Technology (IPT), and any OATH-based token. And once you roll it out, users can handle basic tasks such as resetting passwords through a web-based management console.

Integrates with leading VPN solutions

McAfee One Time Password works with your existing VPN solution. Acting as a RADIUS server, McAfee One Time Password supports most VPN and other RADIUS-aware applications without any installation. It also supports Java and .NET/COM APIs, and on-demand web services, so you can extend strong authentication your custom applications. Learn more about integrations and APIs.

Operating System Support

Microsoft Windows, Linux, Oracle (Sun) Solaris, IBM AIX, HP-UX, Mac OS X (including headless operating systems)

User Database Support

  • LDAP (Microsoft Active Directory, Oracle (Sun) Directory Server, Novell eDirectory, Siemens DirX, OpenDJ)
  • SQL via JDBC or ODBC (Oracle, Microsoft SQL Server, MySQL)

Software Token Pledge

  • Pledge App: iPhone, iPad, Android, BlackBerry, Java ME, Windows Phone
  • Pledge Desktop: Mac OS X, Microsoft Windows, Linux

Data Sheets

McAfee One Time Password Server

Download this data sheet for a feature overview and technical highlights.

To learn more about how McAfee One Time Password integrates with leading VPN providers, virtualization solutions, and network security products, download the following data sheets:

Solution Briefs

McAfee Web Gateway and McAfee Cloud Single Sign On: A Complementary Approach to Today’s Web Security Challenges

This brief from Enterprise Management Associates looks at how the web has become the preferred platform for business applications and subsequent security risks, and reviews the McAfee approach that integrates web threat defense with identity access management.



One Time Password Online Demo

Register to set up an online demo account and experience our two-factor authentication.

Case Studies


See how IT services company AceIQ uses McAfee One Time Password and McAfee Pledge to offer secure access to its mobile and virtual solutions.


McAfee One Time Password helps Cloudalize secure its cloud services with strong two-factor authentication that integrates with end-user and reseller provisioning portals and Citrix NetScaler, and provides self-enrollment of tokens on mobile devices.