|
STRONG
AUTHENTICATION FOR SECURE ACCESS TO YOUR ENTERPRISE NETWORK
| For
Product Inquiries call 1-800-495-1095For Product Purchases call
(949) 509-6560 |
For the Latest RSA Product Announcements: Click
Here |
Authentication Manager
® (5.1 is now available)
provides centralized, strong authentication services for enterprise
networks, ensuring that only authorized users gain access to network
files, applica- tions and communications. In conjunction with our patented
SecurID® token technology, Authentication Manager creates a virtually impenetrable
barrier against unauthorized access, thereby protecting your network
and data resources from potentially devastating accidental or malicious
intrusion.
Highlights
- Enterprise-wide, strong two-factor authentication
for secure access to network resources
- Secures all access points, includ-ing on-site network
connections, direct-dial communications, fire-walls, network routers
and VPNs
- Supports a range of authentication methods using
the SecurID family of hard and soft tokens
- Centralized management of multiple Authentication Manager realms
for simple administration
- Consistent, easy-to-follow logon procedures for end-users
regardless of access point
- Compatible with all major network hardware and software
products
Secure access to network
resources
The rapid evolution of information technology has enabled greater flexibility
in today's business environment. Advanced remote access and networking
solutions make it easy for mobile users to connect to the corporate
network to access computer files, electronic mail, databases and other
information-rich applications. While the increased use of information
technology provides flexibility and convenience, it also raises new
threats to corporate assets. Static passwords are no longer secure enough,
as passwords are the intruder's most common point of entry. In order
to conduct business securely, organizations require strong security
measures to protect valuable network resources.
Authentication Manager lets you create a secure perimeter around
your network, ensuring that only authorized users are permitted to enter
beyond the network perimeter. Used in conjunction with the SecurID family
of hard and soft tokens, Authentication Manager combines strong, two-factor authentication
with a powerful and unique time-based security algorithm to verify the
identity and legitimacy of users attempting to access network resources.
With Authentication Manager and SecurID, only those with the correct combination
of the user's PIN and tokencode will be allowed access to the network.
Authentication Manager secures all access points - connections can be made and authorized
via an on-site network connection, dial-in, Internet, or intranet/extranet
connection.
Simple, centralized
security administration
Authentication Manager makes managing your security environment simple and straight-forward.
Comprehensive administrative features are accessible via a graphical
user interface (GUI) that is intuitive and easy-to-use.
- Easy point-and-click interface is designed to minimize
administrative overhead, free administrators to do other tasks and
lower training costs.
- Administrators can restrict user/group log0n based
on specific time of day or days of the week.
- Select and filtered audit log database messages can
be forwarded to UNIX syslog or Windows NT event log, making it easy
to highlight critical information from the extensive log data.
- Administrative console interface to customer-defined
fields in the database provides the ability to read, write, browse
and report on those customer fields.
Remote access
security
Simplified, yet secure remote network access is intended to increase
the productivity of the mobile user, protect vulnerable corporate information
assets, and reduce the administrative burden on IS managers. Authentication Manager
includes a variety of features that makes it simple for both end-users
and security administrators to securely deploy remote access technology.
- Mobile users can access the enterprise network from
any geographic site, without having to carry multiple security tokens
or remember different user ID's, passwords, PIN's or server names.
- Remote users may be registered only at their home
site, reducing the risk of duplicating user information at multiple
sites. If necessary, the administrator can delete remote users by
name, group, range or time since last logon.
- Administrators can manage remote Authentication Manager realms
from a central location, performing all administrative tasks without
being local to the server. The administrator gets a token record on
each realm and to change realms, simply exits out of SDADMIN, and
reauthenticates in the new realm.
- Administrative authority can be delegated through
the creation of administrative roles at various levels in the organization.
- A separately licensed RADIUS (Remote Authentication
Dial-In User Services) option lets you administer RADIUS users and
clients from the Authentication Manager console with audit information logged
through flat files. This option is based on RADIUS 2.0 from Livingston
Technologies, Inc.
Token assignment
and replacement
Authentication Manager provides an efficient process for token assignment that can
be customized according to the size of the installation and administrator
preferences.
- A point-and-click interface is available to set up
users and groups, assign or delete tokens, and define access parameters.
- New users can be added to an existing database at
any time. Authentication Manager is designed to easily scale for growing installations.
- Batch token replacement simplifies the process of
identifying aging tokens and transitioning users to the replacement
token, automating what can be a time-consuming and repetitive task.
Custom reporting
capabilities
Authentication Manager allows administrators to easily tailor reports to specific
security requirements.
- An audit trail of each login attempt and operations
performed is automatically generated.
- Reports can be generated to view the audit trail,
including activity, exception, incident and usage summaries.
- Many additional custom reports can also be generated.
- Log filtering supports notification based on events.
Cross-realm authentication
Cross-realm authentication permits a distributed collection of cooperating
Authentication Managers to provide a single, enterprise-wide user authentication
service. Traveling tokenholders can authenticate on predetermined Authentication Manager
agents located in remote realms. After the first logon at a remote site,
the user's home realm is cached locally, which keeps network overhead
to a minimum.
Network product
integration
Authentication Manager fits right into your existing computing environment. Through
the SecurID Ready program, leading vendors of remote access products,
Internet firewalls, network operating systems and application software
have built Authentication Manager compatibility right into their products. Contact
Security Dynamics for a complete listing of SecurID Ready partners.
Technical requirements
| Platforms |
Intel; Windows
NT; Sun Solaris; IBM AIX; HP-UX |
| Agents |
Apple ARA, HP-UX,
IBM AIX, Windows NT, Digital UNIX, Netscape servers, Novell NetWare
Connect, Open VMS, SCO, SGI IRIX, SunOS/Solaris, TACACS4, UNIX |
| Disk requirements |
50 MB for primary
server software; 22 MB for backup server; 20 MB for distributed
administration software; 4 MB for initial user database; 240 MB
required for installation; actual storage required based on size
of user population. |
| Network protocol |
TCP/IP, UDP |
| Backup |
Hot backup available |
|
ESC
Home Page |
© 2006 Enterprise Systems Consulting, Inc. all rights reserved.
Copyright
& Legal Disclaimer
|
