single sign-on

, on 62x62, vpn client security, Smartphone middleware security, multiplatform security connector, security token configurator, smartphone security middleware

Usability issues resulting from too many passwords are a common dilemma in the corporate IT environment. charismathics has multiple answers for large IT organizations and down to small companies, struggling with an over abundance of user passwords and how to respond to the costs of supporting those users.

Certificate based solutions use a single strong authentication function that automatically opens the doors to all other applications.

The plug’n’crypt® line of products provides strong authentication based upon smart card technology which fulfills the toughest industry standards including those of banks and government.

charismathics supported applications for single sign-on

vendor

application

                 version               

Citrix

Xenapp

5.0 and above

Citrix

Xenserver

5.0 and above

Evidian

Enterprise SSO

5.0 and above

IBM

ISAM ESSO

8.0 and above

Imprivata

Imprivata OneSign Single Sign-On (SSO)

2.0 and above

Oracle

PassLogix v-GO SSO

3.0 and above

Secure Systems

ControlSphere SSO

2.0 and above

charismathics solutions are Ready for IBM Security Intelligence certified

, ready for tivoli 62x62 02, vpn client security, Smartphone middleware security, multiplatform security connector, security token configurator, smartphone security middleware

charismathics smart security interface© (CSSI) - charismathics token middleware and full PKI client has been integrated with IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) and as such certified Ready for IBM Security Intelligence.

As a result also the charismathics smart security card©, a native or Java-based smart card, as well as charismathics plug’n’crypt®, a USB token which combines the security of a smart card with flash memory storage and RFID contactless access, in bundle with CSSI provide 2-factor authentication to the IBM Single Sign-On solution. With the same device the user can also log to Lotus Notes, enjoy Windows inbuilt security features, run VPN clients and other third party application.

The same is true about charismathics Bluetooth-based smart phone application, iEnigma®, which is fully serving ISAM ESSO in both password and PKI mode. Thus, by entering the token PIN to iEnigma, the application will either transfer a cached password (manually or automatically) or a digital signature to the iEnigma credential provider, serving ISAM ESSO accordingly for a fully automated logon process in both ways. In the automatic mode, even the requirement of entering the password is eliminated, and the logon will be performed once the user is in the Bluetooth range of the computer.
Hence, iEnigma is not serving IBM´s products only for PKI purposes, but as most of the ISAM ESSO customers are password-based, it serves them as well. And by the way it fully plugs into CSSI, our well known PKI middleware, it therefore supports mixed environments of smart phones, USB tokens and smartcards even of different vendors.

iEnigma application: integration with IBM Security Access Manager for Enterprise Single Sign-On (2-users scenario)

An important use case for the ISAM ESSO product is when two users are logging on to the same computer. Starting iEnigma the first user will be logged on by the detection of the smart phone application. By entering the PIN of the smart phone token and pressing Enter the Windows logon will be performed together with the ISAM ESSO logon at the same time. If the first user leaves his desk, as soon as he's out of bluetooth range of the computer, Windows is logged off and the user is logged off from the ISAM ESSO application at the same time. The second user that approaches the computer will be detected by the application automatically and is required to enter the PIN, the same way the first user did before. iEnigma performs the logon to Windows and to ISAM ESSO simultaneously. If the second user leaves the bluetooth range, he will also be logged off of the computer and of the ISAM ESSO application. If the first user then comes back to his desk, iEnigma detects the first session, does not require the user to enter the PIN anymore, logs on to Windows and to ISAM ESSO and gets back to the first session.

events

, omnicard 119x70, vpn client security, Smartphone middleware security, multiplatform security connector, security token configurator, smartphone security middleware 20 - 22 Jan 2015
Grand Hotel Esplanade
Berlin, Germany
, interconnect2015 119x70, vpn client security, Smartphone middleware security, multiplatform security connector, security token configurator, smartphone security middleware 22 - 26 Feb 2015
MGM Grand & Mandalay Bay
Las Vegas, Nevada, USA
Share, email, vpn client security, Smartphone middleware security, multiplatform security connector, security token configurator, smartphone security middleware |
 
vpn client security | Smartphone middleware security | multiplatform security connector | security token configurator | smartphone security middleware
SEO Automation powered by SEO-Genie