eTrust Single Sign-on Automates Secure User Access to Applications

In today’s distributed computing environments, users sign on to many different applications and systems daily. Each system has its own authentication procedure, which forces users to enter a different user ID and password. The more systems a user navigates, the greater the likelihood of user errors and compromised security. On the Internet, if the access to a company website is too complex or perceived as insecure, customers or partners may curtail their business transactions— negatively affecting the company’s bottom line.

One Secure Authentication

With eTrust Single Sign-On, a user needs one authentication—either a user ID and password or a digital certificate. Once authenticated, users have immediate access to all authorized systems, including both client/server and web-based technologies. System or security administrators can implement security controls without changing or interfering with user logins. With the support of many key third-party user authentication methods, eTrust Single Sign-On allows administrators to strengthen and customize the login process based on the sensitivity of the protected resource. As users become more productive with eTrust Single Sign-On, password control becomes more manageable. The solution provides unique benefits to help organizations:

• Improve productivity by automating the user-login process with a simple point-and-click interface.

• Simplify administration by allowing administrative tasks, like adding and deleting users, to be quick and efficient.

• Enhance security by protecting user IDs and network traffic.

• Reduce user downtime and electronic fraud resulting from lost or compromised passwords.

• Provide web access to any industry-standard browser.

Implementation for Today’s Complex Enterprises

eTrust Single Sign-On manages complex environments through:

ü Phased Implementation. Organizations can implement eTrust Single Sign-On in phases, starting where user needs are the greatest and then deploying in stages.

ü Thin Clients. eTrust Single Sign-On supports a thin client configuration, requiring minimal software on user workstations.

ü Open Design. eTrust Single Sign-On supports new authentication mechanisms—such as digital certificates and biometrics.

ü Centralized or Distributed Management. eTrust Single Sign-On provides several administrative tools for centralized user management, including a command line language, the eTrust Single Sign-On Assistant (GUI) and eTrust Admin.

ü Auditing. eTrust Single Sign-On includes auditing, or it can be integrated with eTrust Audit for centralized log collection with other compatible applications and operating systems.

Distinctive Functionalities

Familiar Windows Desktop. The eTrust Single Sign-On common user interface seamlessly integrates with the desktop— through the Windows 95/98/2000 Start menu or desktop icons— and can be accessed from any client workstation.

Automated Login Process.  eTrust Single-Sign-On logs users into any resource requiring a single sign-on, including email, databases, Web, Java, HTML, mainframes and ERP applications.

Secure Single Sign-On Server. User IDs and passwords are stored in a central repository protected by eTrust Access Control on a UNIX or Windows NT server.

Open Authentication. A variety of authentication mechanisms, from Windows NT to LDAP to digital certificates are supported.

Password Management. Password-enhancing mechanisms include password auto-generation, password policies and password exits for adding self-defined quality checks according to the needs of the enterprise.

Sensitive Applications. Organizations can designate a mission critical application as “sensitive,” which requires users to re-authenticate themselves.

Industrial-Strength Features. “Hot” backup and load-balancing features meet the needs of large, distributed networks.

Secure Network Traffic.  All information communicated between the eTrust Single Sign-On components is fully encrypted.

Robustness and Scalability. eTrust Single Sign-On server farms provide both survivability and load balancing.

API Toolkit. The eTrust Single Sign-On API toolkit addresses changing requirements, growing environments and integration with complementary products.