Home | FAQ | Contact Us | Site Map | Request Info
Anti-Virus | Audit & Reporting | Authentication | Content Management | Directory Services | Firewalls | Intrusion Detection | PKI | SSL VPN | Spam Filters | Managed Services | Services | VPN | About Us

 

 

 

 

A New Solution to the Password Challenge


misc


CLICK HERE to download an Imprivata OneSign data sheet

 

Today’s typical enterprise IT environment includes a mixture of "credential stores" -- authentication schemes that support a broadening mixture of Web, client/server, and legacy applications. It’s also true that, facing a growing range of threats and exposures, companies are establishing and enforcing increasingly stringent password policies for internal and external users, creating a proliferation of constantly changing passwords.

 Current Solutions Are Inadequate

 For some applications, directories are useful for storing user identities. However, most applications are incompatible with available schemas. Creating and maintaining a secure central directory service for all enterprise applications is impractical for most organizations.

 In response, single sign-on (SSO) technologies have received a lot of attention from companies that have attempted to deploy early solutions to achieve password administration cost savings and increased user satisfaction. However, SSO has historically been very expensive, difficult to administer, and time-consuming to deploy. Until now, SSO solutions have remained out of reach for all but the largest Web application deployments.

 The Answer: Imprivata OneSign

 Imprivata OneSign addresses the password-management challenge through a unique and innovative solution that increases administrative convenience and reduces headaches for users who must manage multiple accounts and passwords.

 Imprivata OneSign provides a simple, secure mechanism for automating the single sign-on of enrolled subscribers to multiple applications. Instead of requiring a user to remember and enter individual logon information for each application, Imprivata OneSign securely unifies user credentials to applications into a single identity that is easy to establish, maintain, and use.

 With Imprivata OneSign, there are no training requirements, and no application changes. Why? Imprivata OneSign’s intelligent Application Profile Generator(APG) "learns" the behavior of any application and discovers and manages valid credentials for use in SSO sessions.

 Imprivata OneSign automates all application interactions on behalf of the user without requiring changes in user behavior. Credentials and application behavior definitions securely follow the user across enterprise applications based on their primary authentication; they are not stored in individual machines.

 With Imprivata OneSign, a single authorized network logon enables secure access to every required application. This SSO solution ensures the correct level of security throughout your enterprise, across your intranet and Web site and Web applications. What’s more, Imprivata OneSign is as simple as an appliance, with no need for months of consultants and vendors interrupting your business.

 Key Imprivata OneSign Features

  • Non-intrusive Deployment - OneSign connects to your existing user directories and is designed to run seamlessly on your existing network. OneSign network communication is secure, encrypted, lightweight, and exception-based, and does not impact network performance.

  • Plug-and-Go Appliannce  - Imprivata OneSign is a highly secure, self-contained, appliance that works as an integral part of an organization’s network. It is a simple self-contained 1U rack-mounted device with nothing extra to buy or install. Set up, configure, and deployment takes a matter of hours. Redundant pairs ensure a hot failover unit is always ready to take over seamlessly.

  • Application Profile Generator (APG) - OneSign uses an XML document to define the login and password-related behaviors of all SSO-enabled applications. The APG automates the discovery of the behaviors for new applications and creates the appropriate description in the XML document. Imprivata Trusted Exchange (ISX), Imprivata's patent pending distributed credential management technology provides a highly secure mechanism for encrypting, storing, and delivering individual user credentials to applications.
  • Secure SSO - Secure SSO for heterogeneous environments can be enabled for any application. Applications include Web-based applications, client-server applications (including custom or off the shelf), and legacy applications running in a terminal emulator session or a telnet client. OneSign allows flexible authentication policies tied to individual users and provides built-in support for password, RSA SecurID and finger biometric authentication. 
  • Rapid Install - Imprivata OneSign imports from existing user directories and requires no changes to back-end applications. Users can be SSO enabled individually or in groups. The APG learns the authentication behavior of any applications and discovers valid user credentials for SSO. Credentials are tied to users and not individual machines. 
  • Centralized Password Administration - OneSign is tightly integrated with the Windows Domain authentication. This allows OneSign administrators to implement a clear and straightforward password policy across all applications based on users’ primary authentication. To increase the level of security further, OneSign has the ability to cycle application passwords behind-the-scenes. This allows a strong password policy to be realistically enforced.

Contact us for more information or the Imprivata OneSign Product Overview.

 

 

Last updated:

Copyright 2003 | imprivata - all rights reserved