Evidian Enterprise Single Sign-On supports the business processes in your organisation.
Agile Single Sign-On for all users, businesses and organizations. The reduction of security risks requires effective access control to your IT systems. But how do you relieve your staff of having to make constant password changes?
Simplify safe access to your applications
Evidian Enterprise SSO automatically logs on the user to the applications and changes passwords in accordance with stringent guidelines. Security policies are automatically adhered to and enterprise data is effectively protected.
Access rights and roles are managed with just a few mouse clicks. For research department employees you can enforce application using a smart card and open other applications only for employees of the accounting department.
Protect shared accounts und user-to-user delegations
SSO secures the use of shared accounts and makes employee-related records for every use.
Employee can delegate user accounts safely and comprehensibly, without disclosing their passwords. Delegation is in accordance with security policies and is also possible via a secure self-service portal.
Ensure the compliance of your IT systems to laws and regulations
Sarbanes-Oxley, PCI DSS, financial regulatory requirements or privacy policies: Evidian Enterprise SSO helps you to verify compliance with laws and other regulations.
You can log all application access activities carried out by your employees, such as the use of shared accounts etc, in a central database. This allows you to demonstrate that security rules are defined and effectively applied.
Optimize your costs
A call to a helpdesk costs around €15. With SSO you can reduce these calls by up to 30%, as employees no longer lose their passwords and automatic account lockouts due to incorrect entries passwords can effectively be avoided.
In addition, the Evidian Authentication Manager enables your employees to unlock their own systems, for example in the case of a lost Windows password.
Evidian Enterprise SSO creates an inventory of user accounts being used. On the basis of this data, unneeded software licenses can be identified and thus total license fees for applications can be reduced.
A non-contact solution
Evidian Enterprise SSO requires no changes to applications, making it easy to operate for all kinds of applications such as client/server, web, SAP GUI, Terminal Emulator, etc..
Convergence with remote access
Evidian Web Access Manager – Mobile SSO provides secure internet access to web or Citrix applications. It ensures that users have access to the correct login information, regardless of whether they are accessing the system from a corporate PC or via the internet.
Easy integration into your existing infrastructure
Evidian Enterprise SSO uses LDAP directories such as Active Directory, etc. No additional hardware is required.
All log-in credentials are saved in encrypted form. Passwords are collected from users at rollout and do not have to be redefined. An existing provisioning system can be integrated. The rollout is generally carried out on a department by department basis and is extended phase by phase to cover the entire company.
Strong authentication
Strong authentication with biometrics, smart cards, USB tokens, etc. can be implemented with Evidian Authentication Manager.
Via the self-service feature, employees can unlock their PC access either on or offline, for example, if they do not know their password or their smart card is faulty.
Special business functions
The Evidian Authentication Manager allows employees to share PCs, so-called kiosk systems. Fast user switching enables dynamic, personalized and secure handovers without having to restart the Windows session.
The roaming session allows for example doctors during patent visits fast, secure and auditable access to patient data.
Stockbrokers can securely access their PC cluster with a single multi-factor authentication. They can delegate traceable access rights to team members as needed.
Integration in Evidian’s IAM solutions
Evidian Enterprise SSO is part of the comprehensive Evidian Identity and Access Management solution and can be thus easily be supplemented with additional functions:
- With Evidian User Provisioning, the disclosure of passwords is no longer necessary, since:
- Sign-on data is automatically synchronized with the Evidian Enterprise SSO.
- Evidian Policy Manager enables the comparison of data from Evidian Enterprise SSO, this way inactive or unused user accounts can be safely deleted.