Skip to main content
Skip table of contents

IGEL Agent for Imprivata (IAFI) Feature Comparison Matrix

Updated:

General Recommendations

  • Use the latest IAFI OS 12 app version as it will contain the newest features, updates, and fixes.

  • IGEL OS 11 Firmware - check matrix for specific IAFI version information. Some OS 11 versions may be private builds until we issue a new Rolling Release.

    • NOTE: Certain features may only be available in the OS 12 app. The matrix will indicate which ones.

  • For Imprivata Windows or ProveID Embedded Agent (PIE), refer to the latest Imprivata Supported Components Guide.

NOTE: Any IAFI blank features are current roadmap items scheduled for later releases in 2025.

Imprivata EAM General Features and Workflows

General Features and Workflows

Windows Agent

PIE Agent

OS 11 only

IAFI

OS12

OS 11.10.210

IAFI v1.1.0

IAFI Notes

Appliance Failover

(tick)

(tick)

(tick)

(tick)

Offline Mode

(tick)

(tick)

 

Self-Service Password Reset

(Agent Dialogs)

(tick)

(tick)

(tick)

(tick)

For IAFI agents 1.1.1 and lower, use the Imprivata EAM 24.1 branch or older versions. If using the 24.2 branch, use hotfix 2 or higher

NEW - Self-Service Password Reset Web App

(tick)

(tick)

(tick)

The new SSPR Web App experience was introduced in EAM 24.2. IAFI 1.2.0 and higher will use this new SSPR Web App experience and not the Agent Dialogs from prior IAFI versions.

Third-party Self-Service Password Reset

(tick)

(tick)

(tick)

Supported with IAFI 1.2.0 and higher

Non-OneSign User Workflow

(tick)

(tick)

(tick)

Spine Combined Workflow (NHS)

(tick)

(tick)

 

Smartcard as Proximity Card Workflow

(tick)

(tick)

 

Customization Objects (Computer Policy)

(tick)

(tick)

(tick)

Multi-Monitor support

(tick)

(tick)

(tick)

(tick)

Two monitors only, same resolution and size

Default Domain Setting for Agent login

(tick)

(tick)

(tick)

(tick)

Configurable Setting for Lock Screen Toggle

(tick)

(tick)

An optional hotkey that can be configured to toggle the IAFI full lock screen to a compact mode. The default setting is empty. Some example hotkeys: [Esc] or [Esc] + [i]

Primary Authentication Methods (Including Enrollment)

Additional Imprivata Licensed Options for Primary Authentication NOT Supported by IAFI

IAFI does not support these additional Imprivata licensed options for Primary Authentication:

  • Fingerprint identification (one-to-many match)

  • Imprivata ID for Windows access

  • VASCO OTP token authentication

Primary Authentication Methods

Windows Agent

PIE Agent

OS 11 Only

IAFI

OS 12

OS 11.10.210

IAFI v1.1.0

IAFI Notes

Password

(tick)

(tick)

(tick)

(tick)

Proximity Card

(tick)

(tick)

(tick)

(tick)

Supported readers:

  • rfIDeas readers / Imprivata branded models

  • HID Omnikey 5022 CL

  • MFR-75/75A

Smart Card using Active Directory Certificate

(tick)

(tick)

 

Smart Card using external certificate

(tick)

Security Key (FIDO)

(tick)

(tick)

 

Fingerprint Biometrics

(tick)

(tick)

NOTE: Authentication only, not enrollment

 

External ID Token

(tick)

VASCO OTP Token

(tick)

Question and Answer

(tick)

(tick)

Primary + Second Factor Authentication Workflows

IAFI supports the grace period settings for the Imprivata second factor in the user policy

Second-Factor Authentication Workflows

Windows Agent

PIE Agent

OS 11 only

IAFI

OS 12

OS 11.10.210

IAFI v1.1.0

IAFI Notes

Password + Imprivata ID

(tick)

(tick)

Fingerprint + Password

(tick)

(tick)

Fingerprint + Imprivata PIN

(tick)

(tick)

Proximity Card + Password

(tick)

(tick)

(tick)

(tick)

Proximity Card + Imprivata PIN

(tick)

(tick)

(tick)

(tick)

Proximity Card + Fingerprint

(tick)

(tick)

Proximity Card + Fingerprint or Password

(tick)

(tick)

Proximity Card + Fingerprint or Imprivata PIN

(tick)

(tick)

FIDO Security Key + Password

(tick)

FIDO Security Key + Imprivata PIN

(tick)

FIDO Security Key + Fingerprint

(tick)

FIDO Security Key + Fingerprint or Password

(tick)

FIDO Security Key + Fingerprint or Imprivata PIN

(tick)

Authentication / Reauthentication Methods via Imprivata Virtual Channel

Authentication / Reauthentication Methods via Virtual Channel

Windows Agent

PIE Agent

OS 11 Only

IAFI

OS 12

OS 11.10.210

IAFI v1.1.0

IAFI Notes

Proximity Card

(tick)

(tick)

(tick)

(tick)

Smart Card

(tick)

 

 

 

Security Key (FIDO)

(tick)

 

 

 

Fingerprint Biometrics

(tick)

(tick)

 

 

For order signing workflows, you can use USB redirection of a Fingerprint reader until we update IAFI with virtual channel support.

Imprivata Hands Free Authentication

(tick)

(tick)

 

 

Walk-Away Security

Walk-Away Security

Windows Agent

PIE Agent

IAFI

OS 12

OS 11.10.210

IAFI v1.1.0

IAFI Notes

Honors Lock Command (Hotkey in User Policy Challenges tab)

(tick)

(tick)

(tick)

(tick)

These are the current supported Hotkey combinations:

  • [SHIFT] + any other key
    [ESC] + any other key
    [HOME] + any other key
    [RIGHT] alone

  • Fn keys either alone or in combination with [SHIFT], [ESC] or [HOME]

    • Example: [F4] or [SHIFT]+[F4]

Fade to Lock Screensaver

(tick)

(tick)

(tick)

(tick)

Black screensaver only - no fade to lock

Notification Balloon

(tick)

(tick)

(tick)

(tick)

Secure Walk-Away (via Imprivata BLE Dongle)

(tick)

(tick)

 

 

Microsoft Workflows

For OS 12, IGEL recommends using the latest IAFI version and the latest Microsoft app versions for AVD, Win 365 Cloud PC, or Remote Desktop

IAFI versions will specify the minimum required Microsoft companion app.

Microsoft Workflows

Windows Agent

PIE Agent (OS 11 only)

IAFI

OS 12

OS 11.10.210

IAFI v1.1.0

IGEL Agent for Imprivata Configuration Mode

IAFI Notes

Auth Only

Follow Policies

Kiosk

Fast User Switching

AVD Desktops

(Roaming)

(tick)

 

(tick)

(tick)

(tick)

Manual or auto-launch

AVD Remote Apps

(Roaming)

 

(tick)

(tick)

(tick)

Manual or auto-launch

Win365 Cloud PCs Enterprise or Frontline (Roaming)

 

(tick)

(tick)

OS 12 only

Manual or auto-launch

Virtual Kiosk for AVD/Win365 Cloud PC - (Non-Roaming)

(tick)

(AVD only)

 

(tick)

(tick)

(tick)

Imprivata Type 2 agent installed on virtual kiosk

RDS/Remote PC Desktops (Roaming)

(tick)

(tick)

(tick)

(tick)

(tick)

RDS Applications

(Roaming)

(tick)

(tick)

 

 

Virtual Kiosk for RDS/Remote PC Desktops

(Non-Roaming)

(tick)

 

(tick)

(tick)

(tick)

Virtual Kiosk for RDS Published Apps

(Non-Roaming)

(tick)

 

(tick)

(tick)

(tick)

Citrix Workflows

For OS 12, IAFI has specific Citrix version requirements for these workflows.

IAFI versions will specify the minimum Citrix companion app.

Citrix Workflows

Windows Agent

PIE Agent (OS 11 only)

IAFI

OS 12

OS 11.10.210

IAFI v1.1.0

IGEL Agent for Imprivata Configuration Mode

IAFI Notes

Auth Only

Follow Policies

Kiosk

Fast User Switching

Virtual Desktops

(Roaming)

(tick)

(tick)

(tick)

(tick)

(tick)

(tick)

Manual or auto-launch

Virtual Apps (Roaming)

(tick)

(tick)

(tick)

(tick)

(tick)

(tick)

Manual or uto-launch

Virtual Kiosk for Citrix Desktops

(Non-Roaming)

(tick)

(tick)

(tick)

(tick)

(tick)

Imprivata Type 2 agent installed on virtual kiosk

Virtual Kiosk for Published Applications

(Non-Roaming)

(tick)

Epic Only workflow with Type 3 agent on Microsoft Server OS

Omnissa Horizon Workflows

For OS 12, IGEL recommends using the latest IAFI version and the latest Omnissa Horizon app version.

IAFI versions will specify the minimum Omnissa Horizon companion app.

If using the Horizon NextGen v2 broker, only Workspace ONE is supported as the Horizon IdP. Please review the Omnissa Horizon documentation.

Horizon Workflows

Windows Agent

PIE Agent OS 11 only

IAFI

OS 12

OS 11.10.210 IAFI v1.1.0

IGEL Agent for Imprivata Configuration Mode

IAFI Notes

Auth Only

Follow Policies

Kiosk

Fast User Switching

Virtual Desktops / on-prem

(Roaming)

(tick)

(tick)

(tick)

(tick)

(tick)

(tick)

Manual or auto-launch

Virtual Published Applications / on-prem

(Roaming)

(tick)

 

(tick)

(tick)

(tick)

(tick)

Manual or auto-launch

Virtual Desktops (Cloud)

(tick)

 

(tick)

(tick)

(tick)

Virtual Published Apps (Cloud)

(tick)

(tick)

(tick)

(tick)

(tick)

Horizon Cloud Service / v2 NextGen Broker

(tick)

 

(tick)

(tick)

(tick)

(tick)

Desktops or apps and virtual kiosk with Imprivata Type 2 agent

Virtual Kiosk for Horizon Desktops

(Non-Roaming)

(tick)

(tick)

(tick)

(tick)

(tick)

Imprivata Type 2 agent installed on virtual kiosk

Virtual Kiosk for Horizon Apps

(Non-Roaming)

(tick)

(tick)

(tick)

(tick)

Epic Only workflow with Type 3 agent on Microsoft Server OS

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.