Enterprise Identity and Access Management Solution
|
|
SecureCentral IdentityAccess Manager (IAM) is a centralised identity and access management solution providing support for web single sign-on (SSO) and Authentication, Authorization and Audit services for heterogeneous enterprise applications. As IT applications proliferate in business enterprises, restrictions on sharing sensitive intellectual property result in multiple access accounts for a single user. This naturally forces the users to remember multiple passwords, which bring in a host of issues such as forgetting passwords, keeping simple passwords that are easy-to-hack and so on. IAM helps eliminate these issues, thereby enriching end-user experience and ensuring information security. This solution provides centralised identity management, access management, user management, password-based authentication, session management, password management and comprehensive audit logs and reports.
Centralised Identity and Access Management comprises two distinct tasks:
Identity Management refers to the process of creating, manipulating and managing user identities and credentials to give access to various applications. In the central repository, identity records pertaining to all - employees, partners and customers - are maintained. And all the identity information pertaining to a user - be an employee or a customer or a partner - are recorded in each entry. Access Management refers to defining and enforcing the user access policies for the applications and auditing the operations performed by the users.
Enterprise-wide Web Single Sign-on (SSO)
- Users can access all authorized applications through a single authentication process.
Restricted Sign-On through Group-Based Access Management
- Applications can be grouped based on user preferences or on the sensitive nature of the applications
- Single Sign-On (SSO) could be enabled for the services that are part of a group
- For accessing an application of a group from an application in a different group, users will be forced to authenticate again.
Centralized Security Administration
- Authentication without transmitting user credentials ("password") to every service / application. This is done by localizing actual ("primary") authentication to a single web application - the IAM Server, over a HTTPS connection.
Ease of Integration and Implementation
- Can be easily integrated with existing enterprise applications with minimal effort - a few configuration changes.
Most configuration changes could be done through the web console.
Agent Prowess
- Supports agents for applications running on Apache 1.x, Apache 2.x, Tomcat 4.x, Tomcat 5.x, Microsoft Internet Information Server (IIS) and integrates with enterprise application built using C/C++, and Java.
Account and Password Management
- Flexibility for administrators to control user account and password setting rule. Automatic handling of change password requests.
Auditing and Session Management
- Real-time user and service activity logs providing a comprehensive view of authenticated sign-on event trails - key to detecting and preventing fraud!
Comprehensive Audit Trails and Reports
- Operations performed by users alongwith the results of those operations are logged.Audit trails and access reports are generated in the form of graphs and pie charts.
Cross-Platform Product Installation
- IAM can be easily installed in Windows and Linux platforms.
Web-Based Administrator and User Self-Help Console
- Can be accessed through a single, unified web-based interface using any standard web browser - no need to install additional client console.
IAM supports agents for applications running on
- Microsoft Internet Information Server (IIS)
|
