Evidian Enterprise SSO

Managing security risks implies controlling accesses to your information system. How to prevent your users from being overwhelmed by passwords that are difficult to manage?

Simplify and reinforce access to your applications

Evidian Enterprise SSO will enter application passwords automatically, in place of the user, and can change them according to a strict policy. Application access security will, thus, be guaranteed.

Therefore, your users will naturally comply with your security policy. You will manage access rights and roles with just a few mouse clicks. For example, you can impose card-based access to R&D PCs, or make the payment application accessible to accountants only.

Secure shared accounts and user-to-user delegations

Evidian Enterprise SSO will let your users share the same generic accounts, or delegate their access to each other while absent. These situations do not require revealing the shared passwords and are audited by name.

Thanks to an optional self-administration portal, a user who is ill or on holidays will be able to remotely delegate all or part of his accounts, via a simple web page and fully in keeping with the security policy.

Ensure that your information system is compliant with laws and regulations

Sarbanes-Oxley, decrees on data confidentiality, PCI DSS or laws on financial integrity: Evidian Enterprise SSO will help you comply with your legal and regulatory requirements.

All your employees’ attempts to access applications and PCs will be recorded in a central database. All accesses will be recorded by name, including accesses to Windows accounts and generic applications. This will enable you to demonstrate that your access policy is respected and fulfils its objectives.

More Enterprise SS0 features

Optimize your costs

In general, a call to the helpdesk costs 15€. Thanks to SSO, you can reduce these calls to 30% because employees will no longer lose application passwords. Moreover, automating user connections will prevent accounts from being blocked due to typing errors or keyboard status.

What’s more, with Evidian Authentication Manager, if users lose their Windows password, they will be able to unlock their system at any time without seeking assistance from the helpdesk.

Enterprise SSO automatically draws a list of active accounts in the applications. You will, thus, be able to optimize the costs of owning these applications and the associated licenses.

A non-intrusive solution

You will not need to modify any of your applications. Evidian Enterprise SSO activates single sign-on in any type of applications: client/server, web, SAP GUI, terminal emulator, etc.

Convergence with remote accesses

Thanks to Evidian Web Access Manager – Mobile E-SSO, it will be possible to open a secure remote access to web or Citrix applications.

Application passwords will be shared between internal and external accesses; you will thus avoid any risk of desynchronization between the different single sign-on solutions.

Easy deployment in your existing infrastructure

Evidian Enterprise SSO is based on an LDAP directory or Active Directory. No additional hardware is required. The entire security data is encrypted.

It collects user passwords so they do not need to be redefined, or it can be associated with an existing provisioning system.

You can start with only one department and then deploy SSO later on thousands of PCs.

Strong authentication

Enterprise SSO can be completed with Evidian Authentication Manager which reinforces and manages authentication: biometrics, smartcards, USB tokens, etc. If an employee forgets his Windows password, or if his access card does not work any longer, he will be able to unlock his access even offline, with or without the help of the helpdesk.

Business-oriented functions

With Evidian Authentication Manager, sales teams and branch office employees can share a kiosk PC. They can switch to their own environment in a matter of seconds, without having to close then open a Windows session. When doctors make rounds in a hospital their session moves with them.

Traders and control-room technicians can lock, unlock, and delegate fully or partially, permanently or temporarily, a cluster of PCs with a single multi-factor authentication.

Support \| Contact us >> Authentication management Enterprise single sign-on Web single sign-on Identity and access management Network and system monitoring High availability For Microsoft Environment Industry Solutions Finance Healthcare Enterprise Government Telecommunications Consulting and implementation Training and certification Support Find a partner Become a partner Resources for partners Training and certification White papers Case studies and brochures Web demos SafeKit trial Company Careers Offices and distributors
Products Authentication Manager Enterprise SSO: Single Sign-On Web Access Manager IAM solutions: Identity and access management OpenMaster: Service management intelligence SafeKit: Service continuity	... IAM solutions > Enterprise SSO Evidian Enterprise SSO Managing security risks implies controlling accesses to your information system. How to prevent your users from being overwhelmed by passwords that are difficult to manage? Simplify and reinforce access to your applications Evidian Enterprise SSO will enter application passwords automatically, in place of the user, and can change them according to a strict policy. Application access security will, thus, be guaranteed. Therefore, your users will naturally comply with your security policy. You will manage access rights and roles with just a few mouse clicks. For example, you can impose card-based access to R&D PCs, or make the payment application accessible to accountants only. Secure shared accounts and user-to-user delegations Evidian Enterprise SSO will let your users share the same generic accounts, or delegate their access to each other while absent. These situations do not require revealing the shared passwords and are audited by name. Thanks to an optional self-administration portal, a user who is ill or on holidays will be able to remotely delegate all or part of his accounts, via a simple web page and fully in keeping with the security policy. Ensure that your information system is compliant with laws and regulations Sarbanes-Oxley, decrees on data confidentiality, PCI DSS or laws on financial integrity: Evidian Enterprise SSO will help you comply with your legal and regulatory requirements. All your employees’ attempts to access applications and PCs will be recorded in a central database. All accesses will be recorded by name, including accesses to Windows accounts and generic applications. This will enable you to demonstrate that your access policy is respected and fulfils its objectives. More Enterprise SS0 features Optimize your costs Optimize your costs In general, a call to the helpdesk costs 15€. Thanks to SSO, you can reduce these calls to 30% because employees will no longer lose application passwords. Moreover, automating user connections will prevent accounts from being blocked due to typing errors or keyboard status. What’s more, with Evidian Authentication Manager, if users lose their Windows password, they will be able to unlock their system at any time without seeking assistance from the helpdesk. Enterprise SSO automatically draws a list of active accounts in the applications. You will, thus, be able to optimize the costs of owning these applications and the associated licenses. A non-intrusive solution A non-intrusive solution You will not need to modify any of your applications. Evidian Enterprise SSO activates single sign-on in any type of applications: client/server, web, SAP GUI, terminal emulator, etc. Convergence with remote accesses Convergence with remote accesses Thanks to Evidian Web Access Manager – Mobile E-SSO, it will be possible to open a secure remote access to web or Citrix applications. Application passwords will be shared between internal and external accesses; you will thus avoid any risk of desynchronization between the different single sign-on solutions. Easy deployment in your existing infrastructure Easy deployment in your existing infrastructure Evidian Enterprise SSO is based on an LDAP directory or Active Directory. No additional hardware is required. The entire security data is encrypted. It collects user passwords so they do not need to be redefined, or it can be associated with an existing provisioning system. You can start with only one department and then deploy SSO later on thousands of PCs. Strong authentication Strong authentication Enterprise SSO can be completed with Evidian Authentication Manager which reinforces and manages authentication: biometrics, smartcards, USB tokens, etc. If an employee forgets his Windows password, or if his access card does not work any longer, he will be able to unlock his access even offline, with or without the help of the helpdesk. Business-oriented functions Business-oriented functions With Evidian Authentication Manager, sales teams and branch office employees can share a kiosk PC. They can switch to their own environment in a matter of seconds, without having to close then open a Windows session. When doctors make rounds in a hospital their session moves with them. Traders and control-room technicians can lock, unlock, and delegate fully or partially, permanently or temporarily, a cluster of PCs with a single multi-factor authentication.