Single Sign-On

• Overview
• Broad Application Coverage
• Administrative Management Center
• Policy Management Client
• Rapid Deploy Technology
• Seamless Upgrade to Stronger Authentication

 Overview

More than password management software, Borderless Security Single Sign-On provides a definitive answer for those enterprises that are struggling with password-based authentication environments. This includes the burden these environments place on users, the security implications for the organization and the complicated implementation and management that IT administrators face working with today's password-based solutions. The Borderless Security Single Sign-On enables fast implementation of stronger access control throughout the enterprise - taking the user out of the security loop so organizations regain control of authentication. Password management software is just a part of what Borderless Security Single Sign-On provides. Two-factor authentication increases security and simplifies access for the user, without major infrastructure change or end-user training. For the administrator, the Borderless Security Single Sign-On password management software implementation is easy and simplifies administration.

For the Administrator

• Innovative client-based architecture and patent-pending Rapid Deploy™ technology makes the Borderless Security Single Sign-On easy to implement in hours instead of days or weeks.
• Borderless Security Single Sign-On Password Management Software relieves the administrative nightmares that come with setting up and managing today's password authentication systems.

For the User

• Seamless and simplified access to workstations, applications and the network.
• One smart card or USB token and one PIN grant universal access, automatically.

For the Enterprise

• No need to undertake a major infrastructure change; no need for extensive end-user training.
• Increased productivity for users and the IT staff, resulting in a demonstrable ROI.
• Allows organizations to meet regulatory standards for information access and privacy.

To ensure a complete and secure single sign-on experience, comprehensive application coverage is critical. Right out of the box, Borderless Security Single Sign-On supports virtually all Windows, Java, mainframe, and custom applications, as well as standard Web dialog boxes.

Borderless Security Single Sign-On doesn't require agents or scripts to bridge the gap between enterprise applications and the technology. This means enterprises can actually reduce administration costs because a single product, Borderless Security Single Sign-On, can support single sign-on to all applications.

In addition, Borderless Security Single Sign-On enables consistent and strong security across these applications.

Overview
Borderless Security Single Sign-On offers an easy to use admin console called the SafeNet Administrative Management center (AMC) that provides a centralized interface for single sign-on enabling your applications. This is at the heart of Borderless Security Single Sign-On Rapid Deploy Technology - administrators train all corporate applications ONCE for all of their users, and it's ready for deployment. User configurations are created behind the scenes, automating the installation process.

Automated Credential Management
Administrators have complete control in defining, enforcing, and enabling single sign-on to applications and resources through the corporate passwords stored on the users' smart card/USB token. The administrator can establish strong passwords, requiring them to change as often as they want. The Borderless Security Single Sign-On Policy Client software will intercept the password change request from the application and automatically generate a random password based on the pre-set password requirements. Password policy enforcement takes place automatically, and because the user never knows the password, the environment is much more secure.

In addition to enhancing password-based security systems, Borderless Security Single Sign-On also works seamlessly with a variety of other authentication and access control mechanisms. Borderless Security Single Sign-On provides one simple solution that consolidates multiple authentication methods onto one smart card/USB token, without changing the user experience. Should your organization choose to add stronger authentication methods such as digital certificates or biometrics, Borderless Security Single Sign-On provides automated mechanisms to do so.

Single Point of Configuration and Deployment
The SafeNet Administrative Management center is the single point for configuring smart card/USB token-based single sign-on to corporate resources and applications. This includes workstation and network log-on, Web applications, corporate applications, remote access through VPN/RAS, secure e-mail, and more.

Automated Desktop Management
Through the SafeNet Administrative Management center, administrators can define, build, and deploy consistent desktop environments that are centered on the smart card/USB token as the cornerstone for single sign-on to applications and network resources.

Until now, Single Sign-On (SSO) technologies have delivered on the promise of a simplified user experience, but typically have been too complex for an organization to deploy, requiring customized integration for every application. Because Borderless Security Single Sign-On features a client-based architecture, it incorporates its SSO intelligence into the client software and automatically responds to every logon request without the need to integrate or install agents/plug-ins at the application level.

The Policy Management Client is the pre-configured Borderless Security Single Sign-On client software that is installed on your end-users' computers.

Software Installed and Updated Without Any User Action Borderless Security Single Sign-On leverages the Microsoft® Installer (MSI) standard for easy and automated deployment of the Policy Management Client software. The software and all updates can be pushed transparently to user workstations. The user doesn't have to take any action to install software or to update their software. In addition, the Policy Management Client features a light footprint for a quick and clean installation.

Building Custom Clients Within the SafeNet Administrative Management Center, the administrator creates custom, pre-configured Policy Management Clients through the Client Builder module. The Client Builder enables you to specify which utilities and features will be made available to the users of the Policy Client.

Smart Logon Option One of the options within the Client Builder that you can select for your users is the Smart Logon utility.

Borderless Security Single Sign-On allows organizations to remove users from the security loop by taking control over their enterprise passwords and relieving the users of the necessity to remember and manage their multiple passwords. But the user may still have passwords they need to control, so with Borderless Security Single Sign-On you have the option of providing your users with their own password management application - SmartLogon. With SmartLogon, users can store logon information for applications and Web sites in which they have a personal interest.

Providing this utility to your users instills a sense of ownership in the smart card because now the card becomes a personal item that has value both to the company and to the individual. Since it becomes valuable to the user, it is less apt to be forgotten or lost.

SafeNet's Rapid Deploy technology features an intuitive drag-and-drop "training" mechanism for collecting the intelligence needed for recognizing the application login or the change-password dialog window. Using Rapid Deploy technology, Borderless Security Single Sign-On translates this data into an "information store" for each users' client software.

Scriptless
The training process incorporates technology and methods that are unique in the industry and has the ability to address the various types of GUI technologies employed by applications without depending upon costly and time-consuming scripting.

This provides the administrator with the ability to rapidly set up smart card-based single sign-on coverage for all applications in a matter of minutes.

With Borderless Security Single Sign-On in place, enterprises can take advantage of a natural migration path from username/passwords to stronger access control solutions.

The Borderless Security Single Sign-On smart card is an ideal and secure medium for storing a range of access credentials, including PKI digital certificates and biometric data. SafeNet has always engineered its software, smart cards and USB tokens to support emerging technologies, so customers have automatic support for these technologies built-in to their infrastructure. Borderless Security Single Sign-On includes integrated support for PKI - including instant PKI certificate deployment and automatic discovery of an enterprise's PKI server.

By laying the groundwork with Borderless Security Single Sign-On, enterprises can swiftly move to upgrade the security of their computing infrastructure in the future and still know that their investment in Borderless Security Single Sign-On is protected because SafeNet technology scales to support their environment.