|
|||
|
Authentication methods:
IDConfirm 1000 uses the following methods for main authentication:
- OATH HOTP, TOTP (Event based, Time based)
- SMS OTP
- EMV CAP (OTP, challenge-response, transaction data signature).
Architecture:
IDConfirm 1000 is a Web application relying on the following Web servers:
- Apache Tomcat on Windows and Linux,
- Web Sphere on AIX
- Any other Web server could be supported through a specific validation.
The chosen architecture allow "High Availability" and "Fail-Over" configuration relying on operating systems, databases and monitoring mechanisms.
Databases:
IDConfirm 1000 stores OTP related data and User data if needed (DB mode) in:
- Firebird
- MySQL
- MS SQL
- Oracle
- IBM DB2 (Windows or AIX)
- Any other SQL database could be supported through a specific development
User Repository:
IDConfirm 1000can be connected to the following LDAP when Users account are managed externally (Mixed mode):
- Microsoft Active Directory,
- Novell eDirectory,
- Sun One,
- Open LDAP,
- Any other LDAP could be supported through a specific development.
Authentication Services interface:
Authentication services are integrated using the following interfaces:
- HTTP or HTTPS requests,
- XML requests sent to Web API,
- RADIUS requests through IDConfirm 1000 RADIUS agents for
" Microsoft IAS or NPS (Windows Server 2008),
" Juniper Steel Belted RADIUS,
" FreeRADIUS
- Proprietary request through IDConfirm 1000 Application agents for
" Citrix Web Interface,
" Microsoft OWA,
" Microsoft ISA
" Microsoft IAG
Security Modules:
The following security modules can be connected to the server:
- nShield or payShield from NCipher,
- Crypt2Pay from Bull - Support OATH and EMV-CAP,
- Java Key Store software module,
- Any other HSM could be supported through a specific development.
Compatibility:
Arkoon | |||
VPN appliance | via Radius agent | Validation through external partner | |
Cisco | |||
VPN appliance | ASA 5510 V7.2 | via RADIUS agent in Cisco VPN scenario | IPSec and SSL are covered |
Citrix | |||
Application publishing | Presentation Server 4.0 | via CWI agent | |
Presentation Server 4.2 | via CWI agent | ||
Presentation Server 4.5 | via CWI agent | ||
Presentation Server 5.0 | via CWI agent | ||
Interface | Web Interface 4.0 | Dedicated CWI agent | |
Web Interface 4.2 | Dedicated CWI agent | ||
Web Interface 4.5 | Dedicated CWI agent | ||
Web Interface 4.6 | Dedicated CWI agent | ||
Web Interface 5.x | via RADIUS agent | ||
VPN | Access Gateway Std. Ed. | via RADIUS agent in CAG Standard scenario | |
Access Gateway Adv. Ed. | via RADIUS agent in CAG Advance scenario | ||
Access Gateway Ent. Ed. | via RADIUS agent in CAG Enterprise scenario | ||
SSO | Password Manager | Not applicable | |
Checkpoint | |||
VPN appliance | Checkpoint NGX R65 | via RADIUS agent in Checkpoint VPN scenario | IPSec and SSL are covered |
Evidian | |||
Software clustering | SafeKit | In SafeKit scenario | Fail-over cluster configuration sample |
SSO | E-SSO | via RADIUS agent | |
F5 | |||
VPN appliance | via Radius agent | Validation through external partner | |
IBM | |||
Database | DB2 | Windows or AIX | |
Juniper | |||
RADIUS Server | Steel Belted | Dedicated SB agent | |
VPN appliance | SA 700 SSG V5.4 |
via RADIUS agent in Juniper SSL VPN scenario via RADIUS agent in Juniper IPSec VPN scenario |
|
Microsoft | |||
Operating System | Server 2003 | IDConfirm 1000 | Fail-over cluster configuration sample |
Server 2008 | IDConfirm 1000 | ||
Database | MS SQL | IDConfirm 1000 | |
LDAP | Active Directory | IDConfirm 1000 | |
RADIUS Server | IAS - Server 2003 32/64 NPS - Server 2008 32/64 |
MS RADIUS Agent MS RADIUS Agent |
|
Collaborative messaging server | Exchange 2003 Exchange 2003 Exchange 2003 Exchange 2007 |
MS RADIUS Agent in OWA scenario | |
MS ISA Agent | |||
OWA-IIS agent | |||
MS ISA Agent | OWA Access through ISA 2006 WITHOUT DOMAIN PASSWORD. The two factor authentication is insured via PIN protected OTP. |
||
Security Gateway | ISA 2004 ISA 2006 |
MS ISA Agent | |
MS ISA Agent | |||
VPN | Server 2003 Server 2003 |
MS RADIUS Agent in training samples | |
MS ISA Agent | |||
IAG IAG |
MS RADIUS Agent | ||
MS IAG Agent | |||
Novell | |||
LDAP | eDirectory | ||
Open Source | |||
Database | Firebird | IDConfirm 1000 | |
MySQL | IDConfirm 1000 | ||
LDAP | Open LDAP | IDConfirm 1000 | |
RADIUS Server | Free Radius 32/64 | Dedicated FR agent | |
Oracle | |||
Database | Oracle | ||
Red Hat | |||
Operating System | Red Hat Linux | IDConfirm 1000 | |
Sun | |||
LDAP | Sun One | IDConfirm 1000 | |
Suse | |||
Operating System | Suse 10 | IDConfirm 1000 | |
Sonicwal | |||
VPN appliance | via Radius agent | Validation through external partner |