 WiseGuard
Features and components
WiseGuard provides:
Plug-and-play single sign-on – SSOWatch
WiseGuard frees users from having to remember all the passwords for all their applications. Using SSOWatch, technology, which is already deployed across numerous organizations in Europe, Japan, and the USA, WiseGuard provides an easy to use single sign-on solution. Once authenticated in Windows 2000/2003 (or stronger means of authentication) the user's access rights for password-protected information resources are managed by WiseGuard. A graphical user interface enables the integration of access to new applications in a couple of clicks, whatever the technology used, including the web.
Multi-factor strong authentication – Advanced Login
WiseGuard reinforces user authentication through a wide choice of techniques, such as smart cards, USB keys, and biometrics. WiseGuard Advanced Login dynamically manages the authentication methods chosen by a user, a group of users or a whole department. By this means, a smooth and step-by-step rollout of strong authentication can be managed across the organization.
Smart card management – Token Manager
The use of smart cards as the means to store certificates for user authentication in the Windows 2000/2003 environment enhances the level of security compared to authentication by a simple login. However, the down-side of the improvement in security is the complexity of deployment and administration of the smart cards.
Token Manager is a tool for managing smart cards that is specifically designed to simplify this complexity and facilitate the management of smart cards by the security administrator
Extended management of access rights – Extended Manager
At the heart of WiseGuard, CertiPass technology provides unparalleled features for the management of authentication data. WiseGuard can thus meet the most stringent of organizational requirements. For example when a user is ill or on holiday, or when smart cards are lost, WiseGuard manages the delegation or sharing of access rights, right down to a single user, if required.
WiseGuard simplifies the management of multiple passwords and allows the delegation of administration functions down to the level of user groups. The number of calls due to forgotten passwords, and the associated help desk costs, are drastically reduced.
Emergency access via primary password and PIN code reset
If end-users have lost their primary password or PIN code, they just need to click a button on their Windows login screen. After providing the correct answers to a few predefined questions, they will be able to reset their password. And this even works if the user is not connected to the network (e.g. hotel room). In case of lost password, users can log in using the new password they reset themselves. It is not necessary to call the held desk.
In the case of a lost PIN code, the user must click on a button to get a “challenge” string and provide it to the help desk. The help desk provides a “response” string and the user can log in using a new PIN. If the help desk is not available, the user can log in with a temporary password.
With this solution, emergency access is available even if no Windows session is open, offline or online, at any time of the day. In addition, the solution reduces help desk costs by eliminating most passwords and PIN reset calls.
Mobile E-SSO for employees
With “Mobile E-SSO” employees can connect to their web applications via a gateway from a browser on any Internet-connected PC. The employees are authenticated against the employee LDAP directory using the appropriate web authentication method (password, smart card, one-time password,...). They are then connected to an authorized web application using the SSO data managed by WiseGuard.
Fast user switching
Users can securely share the same PC without closing the Windows session. This is a great time-saver in situations where lengthy session switching would decrease productivity (stores, newsrooms,...). To do this, user A just removes his or her smart card (or USB token,...) from the PC. User B then plugs in his or her smart card (...) and uses the PC right away.
Data privacy
WiseGuard Mobile Protect combines control of unauthorized access with encryption of sensitive files and folders. This solution does not need to encrypt the entire hard disk, but only the most sensitive data.. Allowing co-workers to encrypt sensitive files and folders, WiseGuard File Encryption makes it easier to share and transfer sensitive information among internal employees (sales managers, R&D developers, marketing people,…), and between employees and external partners (consultant, suppliers, resellers,…) .
|
